CVE-2004-0387

Severity

51%

Complexity

49%

Confidentiality

106%

Stack-based buffer overflow in the RT3 plugin, as used in RealPlayer 8, RealOne Player, RealOne Player 10 beta, and RealOne Player Enterprise, allows remote attackers to execute arbitrary code via a malformed .R3T file.

CVSS 2.0 Base Score 5.1. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:P/I:P/A:P).

Overview

First reported 21 years ago

2004-06-01 04:00:00

Last updated 7 years ago

2017-07-11 01:30:00

Affected Software

RealNetworks RealOne Player

References

20040307 REAL One Player R3T File Format Stack Overflow

11314

http://www.ngssoftware.com/advisories/realr3t.txt

Patch, Vendor Advisory

4977

10070

http://www.service.real.com/help/faq/security/040406_r3t/en/

Patch, Vendor Advisory

realplayer-r3t-bo(15774)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.

CVE-2004-0387

Severity

What is severity?

Complexity

What is complexity?

Confidentiality

What is confidentiality?

Overview

First reported 21 years ago

Last updated 7 years ago

Affected Software

RealNetworks RealOne Player

References

20040307 REAL One Player R3T File Format Stack Overflow

20040307 REAL One Player R3T File Format Stack Overflow

11314

http://www.ngssoftware.com/advisories/realr3t.txt

4977

10070

http://www.service.real.com/help/faq/security/040406_r3t/en/

realplayer-r3t-bo(15774)

Stay updated

Get in touch