CVE-2004-0258

critical

Description

Multiple buffer overflows in RealOne Player, RealOne Player 2.0, RealOne Enterprise Desktop, and RealPlayer Enterprise allow remote attackers to execute arbitrary code via malformed (1) .RP, (2) .RT, (3) .RAM, (4) .RPM or (5) .SMIL files.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/15040

http://www.service.real.com/help/faq/security/040123_player/EN/

http://www.securityfocus.com/bid/9579

http://www.nextgenss.com/advisories/realone.txt

http://www.kb.cert.org/vuls/id/473814

http://www.ciac.org/ciac/bulletins/o-075.shtml

http://marc.info/?l=bugtraq&m=107608748813559&w=2

http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0027.html

Details

Source: Mitre, NVD

Published: 2004-11-23

Updated: 2017-07-11

Risk Information

CVSS v2

Base Score: 7.6

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

Detections

Analytics