CVE-2010-4377
9.3
Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 8.6 / Impact: 10.0
Source: NVD
Description
Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, Mac RealPlayer 11.0 through 12.0.0.1444, and Linux RealPlayer 11.0.2.1744 allows remote attackers to execute arbitrary code by specifying many subbands in cook audio codec information in a Real Audio file.
Affected (19)
Products: Realnetworks: Realplayer Sp, Realplayer
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 1.0.0 |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.0.1 |
| Running on/with | Platform Versions |
|---|---|
Apple Mac Os X | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.0.2.1744 |
| Running on/with | Platform Versions |
|---|---|
Linux Linux Kernel | All versions |
References (6)
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Timeline
No history available yet.