Lucene search

PRIOn knowledge basePRION:CVE-2010-0116

HistoryAug 30, 2010 - 8:00 p.m.

Integer overflow

2010-08-3020:00:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.813 High

EPSS

Percentile

98.2%

JSON

Integer overflow in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows might allow remote attackers to execute arbitrary code via a crafted QCP file that triggers a heap-based buffer overflow.

CPENameOperatorVersion
realplayereq11.0
realplayereq11.1
realplayer_speq1.0.0
realplayer_speq1.0.1
realplayer_speq1.0.2
realplayer_speq1.0.5
realplayer_speq1.1
realplayer_speq1.1.1
realplayer_speq1.1.2
realplayer_speq1.1.3

Name	Operator	Version
realplayer	eq	11.0
realplayer	eq	11.1
realplayer_sp	eq	1.0.0
realplayer_sp	eq	1.0.1
realplayer_sp	eq	1.0.2
realplayer_sp	eq	1.0.5
realplayer_sp	eq	1.1
realplayer_sp	eq	1.1.1
realplayer_sp	eq	1.1.2
realplayer_sp	eq	1.1.3

Rows per page:

1-10 of 111

References

secunia.com/advisories/41096

secunia.com/advisories/41154

secunia.com/secunia_research/2010-3/

service.real.com/realplayer/security/08262010_player/en/

www.securitytracker.com/id?1024370

www.vupen.com/english/advisories/2010/2216

exchange.xforce.ibmcloud.com/vulnerabilities/61420

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7326

8.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.813 High

EPSS

Percentile

98.2%

JSON

Related for PRION:CVE-2010-0116