CVE-2013-4973

Опубликовано: 27 авг. 2013

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Stack-based buffer overflow in RealNetworks RealPlayer before 16.0.3.51, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted .rmp file.

Ссылки

http://service.real.com/realplayer/security/08232013_player/en/
Vendor Advisory
http://www.kb.cert.org/vuls/id/246524
US Government Resource
http://www.securityfocus.com/bid/61989
http://service.real.com/realplayer/security/08232013_player/en/
Vendor Advisory
http://www.kb.cert.org/vuls/id/246524
US Government Resource
http://www.securityfocus.com/bid/61989

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:realnetworks:realplayer:*:*:*:*:*:*:*:*

Версия до 16.0.2.32 (включая)

cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:10.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.2:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.2.1744:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.2.2315:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.0.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11.1.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:11_build_6.0.14.748:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:12.0.0.1444:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:12.0.0.1548:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.1.609:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.2:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:14.0.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.4.43:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.5.109:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.0.6.14:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:15.02.71:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:16.0.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:16.0.0.282:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer:16.0.1.18:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.0.5:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:realnetworks:realplayer_sp:1.1.5:*:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.11834

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-p9v9-vhj9-cjwx

github

больше 3 лет назад