Published: 19/04/2005 Updated: 21/11/2017

CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9

VMScore: 454

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Heap-based buffer overflow in RealPlayer 10 and previous versions, Helix Player prior to 10.0.4, and RealOne Player v1 and v2 allows remote malicious users to execute arbitrary code via a long hostname in a RAM file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
realnetworks realplayer 10.0
realnetworks realplayer 8.0
realnetworks helix player
realnetworks realone player 2.0
realnetworks realone player 1.0
realnetworks realplayer 10.0_6.0.12.690

Synopsis RealPlayer security update Type/Severity Security Advisory: Critical Topic An updated RealPlayer package that fixes a buffer overflow issue is nowavailableThis update has been rated as having critical security impact by the RedHat Security Response Team Description RealPlayer is ...

Synopsis HelixPlayer security update Type/Severity Security Advisory: Critical Topic An updated HelixPlayer package that fixes a buffer overflow issue is nowavailableThis update has been rated as having critical security impact by the RedHat Security Response Team Description HelixPlayer ...

NVD-CWE-Other http://service.real.com/help/faq/security/050419_player/EN/http://www.redhat.com/support/errata/RHSA-2005-363.html http://www.redhat.com/support/errata/RHSA-2005-392.html http://www.redhat.com/support/errata/RHSA-2005-394.html http://pb.specialised.info/all/adv/real-ram-adv.txt http://www.redhat.com/archives/fedora-announce-list/2005-April/msg00040.html http://marc.info/?l=bugtraq&m=111401615202987&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11205 https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2005:394

CVE-2005-0755

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect