Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2013-3299

Published: 06/07/2013 Updated: 08/07/2013
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Realplayer

Vulnerability Summary

RealNetworks RealPlayer 16.0.2.32 and previous versions allows remote malicious users to cause a denial of service (resource consumption or application crash) via an HTML document containing JavaScript code that constructs a long string.

Vulnerable Product Search on Vulmon Subscribe to Product

realnetworks realplayer 16.0.0

realnetworks realplayer 15.0.6.14

realnetworks realplayer 15.0.3.37

realnetworks realplayer 15.0.0

realnetworks realplayer 15.0.4

realnetworks realplayer 11.1.3

realnetworks realplayer 11.1

realnetworks realplayer 11.0.2

realnetworks realplayer 11.0.3

realnetworks realplayer

realnetworks realplayer 15.0.4.43

realnetworks realplayer 15.0.5.109

realnetworks realplayer 14.0.1.609

realnetworks realplayer 14.0.3

realnetworks realplayer 11.0.2.2315

realnetworks realplayer 11.0.1

realnetworks realplayer 11.0

realnetworks realplayer 11.0.5

realnetworks realplayer 4

realnetworks realplayer 16.0.0.282

realnetworks realplayer 14.0.5

realnetworks realplayer 14.0.2

realnetworks realplayer 14.0.0

realnetworks realplayer 14.0.1

realnetworks realplayer 12.0.0.1548

realnetworks realplayer 10.0

realnetworks realplayer 8

realnetworks realplayer 7

realnetworks realplayer 6

realnetworks realplayer 15.0.2.72

realnetworks realplayer 15.0.1.13

realnetworks realplayer 15.02.71

realnetworks realplayer 14.0.4

realnetworks realplayer 12.0.0.1444

realnetworks realplayer 11.0.2.1744

realnetworks realplayer 11.0.4

realnetworks realplayer 10.5

realnetworks realplayer 5

realnetworks realplayer 11_build_6.0.14.748

Exploits

Exploit DB: RealNetworks RealPlayer - Denial of Service
source: wwwsecurityfocuscom/bid/60903/info RealNetworks RealPlayer is prone to a remote denial-of-service vulnerability Successful exploits will allow attackers to consume an excessive amount of CPU resources, denying service to legitimate users RealPlayer 160232 and prior are vulnerable <html> <head> <script lang ...
Exploit DB: Real Player 16.0.2.32 Resource Exhaustion
Real Player versions 160232 and below suffer from a denial of service vulnerability ...

References

CWE-20http://seclists.org/bugtraq/2013/Jul/18https://nvd.nist.govhttps://www.exploit-db.com/exploits/38623/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
client sideCVE-2023-31889template injectionCVE-2024-4304CVE-2006-4304CVE-2024-33272type confusionCVE-2024-21345CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook