Lucene search

PRIOn knowledge basePRION:CVE-2010-3751

HistoryOct 19, 2010 - 12:00 a.m.

Heap overflow

2010-10-1900:00:00

PRIOn knowledge base

www.prio-n.com

8.3 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.008 Low

EPSS

Percentile

80.6%

JSON

Multiple heap-based buffer overflows in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 allow remote attackers to execute arbitrary code via a long .smil argument to the (1) tfile, (2) pnmm, or (3) cdda protocol handler.

CPENameOperatorVersion
realplayereq11.0
realplayereq11.0.4
realplayereq11.0.2
realplayereq11.0.3
realplayereq11.0.5
realplayereq11.1
realplayereq11.0.1
realplayer_speq1.0.1
realplayer_speq1.1.3
realplayer_speq1.0.0

Name	Operator	Version
realplayer	eq	11.0
realplayer	eq	11.0.4
realplayer	eq	11.0.2
realplayer	eq	11.0.3
realplayer	eq	11.0.5
realplayer	eq	11.1
realplayer	eq	11.0.1
realplayer_sp	eq	1.0.1
realplayer_sp	eq	1.1.3
realplayer_sp	eq	1.0.0

Rows per page:

1-10 of 161

References

service.real.com/realplayer/security/10152010_player/en/

www.securityfocus.com/bid/44144

www.zerodayinitiative.com/advisories/ZDI-10-213/

8.3 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.008 Low

EPSS

Percentile

80.6%

JSON

Related for PRION:CVE-2010-3751