Lucene search
Ubuntu.comUB:CVE-2007-2264HistoryOct 31, 2007 - 12:00 a.m.
CVE-2007-2264
2007-10-3100:00:00
ubuntu.com
ubuntu.com
5
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.96 High
EPSS
Percentile
99.5%
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and
possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows
remote attackers to execute arbitrary code via a RAM (.ra or .ram) file
with a large size value in the RA header.
Notes
| Author | Note |
|---|---|
| kees | http://service.real.com/realplayer/security/10252007_player/en/ “Issue 5” |
Related
securityvulns
securityvulns
Real Player multiple buffer overflows
2007-11-02 00:00:00
zdi
zdi
RealPlayer RA Field Size File Processing Heap Overflow Vulnerability
2007-10-31 00:00:00
checkpoint_advisories
checkpoint_advisories
cve
cve
CVE-2007-2264
2007-10-31 17:46:00
prion
prion
Heap overflow
2007-10-31 17:46:00
nessus
nessus
FreeBSD : linux-realplayer -- multiple vulnerabilities (f762ccbb-baed-11dc-a302-000102cc8983)
2008-01-07 00:00:00
RHEL 3 / 4 / 5 : RealPlayer (RHSA-2007:0841)
2009-08-24 00:00:00
RealPlayer for Windows < Build 6.0.12.1662 Multiple Vulnerabilities
2007-10-30 00:00:00
freebsd
freebsd
linux-realplayer -- multiple vulnerabilities
2007-10-25 00:00:00
openvas
openvas
FreeBSD Ports: linux-realplayer
2008-09-04 00:00:00
FreeBSD Ports: linux-realplayer
2008-09-04 00:00:00
redhat
redhat
(RHSA-2007:0841) Critical: RealPlayer security update
2007-08-17 00:00:00
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.96 High
EPSS
Percentile
99.5%
Related for UB:CVE-2007-2264