Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.1
CVSSv2

CVE-2005-1766

Published: 28/06/2005 Updated: 11/10/2017
CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9
VMScore: 454
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Vulnerability Summary

Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on Windows, and 10, 10.0.1.436, and other versions prior to 10.0.5 on Linux, allows remote malicious users to execute arbitrary code via a RealMedia file with a long RealText string, such as an SMIL file.

Vulnerable Product Search on Vulmon Subscribe to Product

realnetworks realplayer

Vendor Advisories

Red Hat: RealPlayer security update
Synopsis RealPlayer security update Type/Severity Security Advisory: Critical Topic An updated RealPlayer package that fixes a buffer overflow issue is nowavailableThis update has been rated as having critical security impact by the RedHat Security Response Team[Updated 05 Jul 2005]The previous package fo ...
Red Hat: HelixPlayer security update
Synopsis HelixPlayer security update Type/Severity Security Advisory: Critical Topic An updated HelixPlayer package that fixes a buffer overflow issue is nowavailableThis update has been rated as having critical security impact by the RedHat Security Response Team Description HelixPlayer ...
Debian Security Advisories: DSA-826-1 helix-player -- multiple vulnerabilities
Multiple security vulnerabilities have been identified in the helix-player media player that could allow an attacker to execute code on the victim's machine via specially crafted network resources CAN-2005-1766 Buffer overflow in the RealText parser could allow remote code execution via a specially crafted RealMedia file with a lo ...

References

NVD-CWE-Otherhttp://www.redhat.com/support/errata/RHSA-2005-523.htmlhttp://service.real.com/help/faq/security/050623_player/EN/http://www.idefense.com/application/poi/display?id=250&type=vulnerabilities&flashstatus=truehttp://www.novell.com/linux/security/advisories/2005_37_real_player.htmlhttp://www.debian.org/security/2005/dsa-826http://secunia.com/advisories/16981http://www.redhat.com/support/errata/RHSA-2005-517.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9509https://access.redhat.com/errata/RHSA-2005:523https://nvd.nist.govhttps://www.debian.org/security/./dsa-826
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRFCVE-2023-52162CVE-2024-23670CVE-2024-5404man-in-the-middleCVE-2024-5214CVE-2024-4358CVE-2024-20696hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook