CVE-2008-5664

Published: Dec 19, 2008Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in Realtek Media Player (aka Realtek Sound Manager, RtlRack, or rtlrack.exe) 1.15.0.0 allows remote attackers to execute arbitrary code via a crafted playlist (PLA) file.

Affected (1)

Products: Realtek: Realtek Media Player

Realtek

1 product

Realtek Media Player

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Realtek Realtek Media Player	Version 1.15.0.0

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (16)

http://osvdb.org/50715

Source: cve@mitre.org

http://secunia.com/advisories/33183

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/4783

Source: cve@mitre.org

http://www.securityfocus.com/bid/32860

Source: cve@mitre.org

Exploit

http://www.shinnai.net/xplits/TXT_n7dMz2jBQsDJFtplslYw.html

Source: cve@mitre.org

ExploitURL Repurposed

http://www.vupen.com/english/advisories/2008/3446

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/47380

Source: cve@mitre.org

https://www.exploit-db.com/exploits/7492

Source: cve@mitre.org

http://osvdb.org/50715