9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.96 High
EPSS
Percentile
99.5%
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and
possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows
remote attackers to execute arbitrary code via a RAM (.ra or .ram) file
with a large size value in the RA header.
Author | Note |
---|---|
kees | http://service.real.com/realplayer/security/10252007_player/en/ “Issue 5” |