CVE-2013-1750

Опубликовано: 20 мар. 2013

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Heap-based buffer overflow in RealNetworks RealPlayer before 16.0.1.18 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to execute arbitrary code via a malformed MP4 file.

Ссылки

http://service.real.com/realplayer/security/03152013_player/en/
Vendor Advisory
http://service.real.com/realplayer/security/03152013_player/en/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:realnetworks:realplayer:*:*:*:*:*:*:*:*

Версия до 16.0.0.282 (включая)

cpe:2.3:a:realnetworks:realplayer:4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:6:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:7:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:8:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:10.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.2:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.2.1744:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.2.2315:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.1.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11_build_6.0.14.748:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:12.0.0.1444:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:12.0.0.1548:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.1.609:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.2:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.1.13:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.2.72:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.3.37:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.4.43:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.5.109:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.6.14:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.02.71:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:16.0.0:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:realnetworks:realplayer_sp:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.0.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.5:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.07088

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-48wj-39w8-38rp

github

больше 3 лет назад