CVE-2005-0755

Severity

51%

Complexity

49%

Confidentiality

106%

Heap-based buffer overflow in RealPlayer 10 and earlier, Helix Player before 10.0.4, and RealOne Player v1 and v2 allows remote attackers to execute arbitrary code via a long hostname in a RAM file.

Heap-based buffer overflow in RealPlayer 10 and earlier, Helix Player before 10.0.4, and RealOne Player v1 and v2 allows remote attackers to execute arbitrary code via a long hostname in a RAM file.

CVSS 2.0 Base Score 5.1. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:P/I:P/A:P).

Overview

First reported 19 years ago

2005-04-19 04:00:00

Last updated 7 years ago

2017-11-21 14:13:00

Affected Software

RealNetworks Helix Player

Realnetworks RealPlayer 8.0 for Mac Os X

8.0
mac_os_x

RealNetworks RealPlayer 10.0

10.0

References

20050420 RealNetworks RealPlayer/RealOne Player/Helix Player Remote Heap Overflow

Third Party Advisory

http://pb.specialised.info/all/adv/real-ram-adv.txt

Third Party Advisory

http://service.real.com/help/faq/security/050419_player/EN/

Third Party Advisory

FEDORA-2005-329

Third Party Advisory

RHSA-2005:363

Third Party Advisory

RHSA-2005:392

Third Party Advisory

RHSA-2005:394

Third Party Advisory

oval:org.mitre.oval:def:11205

Third Party Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.