CVE-2011-1525

Опубликовано: 06 апр. 2011

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Heap-based buffer overflow in rvrender.dll in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.2, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted frame in an Internet Video Recording (IVR) file.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:realnetworks:realplayer:*:*:*:*:*:*:*:*

Версия до 14.0.1.633 (включая)

cpe:2.3:a:realnetworks:realplayer:4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:6:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:7:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:8:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:10.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.2:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.2.1744:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.2.2315:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.1.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11_build_6.0.14.748:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:12.0.0.1444:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:12.0.0.1548:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.1.609:*:*:*:*:*:*:*

EPSS

Процентиль: 97%

0.32197

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-pj94-34p9-c3wf

github

больше 3 лет назад