exploitDog

GHSA-rcgv-75hg-vhm9

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Heap-based buffer overflow in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allows remote attackers to execute arbitrary code via a long string in the TRACKID element of an RMP file, a different vulnerability than CVE-2013-7260.

Heap-based buffer overflow in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allows remote attackers to execute arbitrary code via a long string in the TRACKID element of an RMP file, a different vulnerability than CVE-2013-7260.

Ссылки

EPSS

Процентиль: 97%

0.34977

Средний

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2013-6877

nvd

около 12 лет назад

Heap-based buffer overflow in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allows remote attackers to execute arbitrary code via a long string in the TRACKID element of an RMP file, a different vulnerability than CVE-2013-7260.

EPSS

Процентиль: 97%

0.34977

Средний

CVE ID

Дефекты

CWE-119