Vulnerability-Lookup

CVE-2009-0375 (GCVE-0-2009-0375)

Vulnerability from cvelistv5 – Published: 2009-02-08 21:00 – Updated: 2024-08-07 04:31

Summary

Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.vupen.com/english/advisories/2010/0178	vdb-entryx_refsource_VUPEN
	http://service.real.com/realplayer/security/01192…	x_refsource_CONFIRM
	http://www.fortiguardcenter.com/advisory/FGA-2009…	x_refsource_MISC
	http://secunia.com/advisories/33810	third-party-advisoryx_refsource_SECUNIA
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://www.securityfocus.com/archive/1/500722/100…	mailing-listx_refsource_BUGTRAQ
	http://secunia.com/advisories/38218	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/bid/33652	vdb-entryx_refsource_BID

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T04:31:26.226Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "ADV-2010-0178",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2010/0178"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://service.real.com/realplayer/security/01192010_player/en/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
          },
          {
            "name": "33810",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/33810"
          },
          {
            "name": "realplayer-ivr-bo(48567)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"
          },
          {
            "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
          },
          {
            "name": "38218",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/38218"
          },
          {
            "name": "33652",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/33652"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2009-02-05T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-11T19:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "ADV-2010-0178",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2010/0178"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://service.real.com/realplayer/security/01192010_player/en/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
        },
        {
          "name": "33810",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/33810"
        },
        {
          "name": "realplayer-ivr-bo(48567)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"
        },
        {
          "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
        },
        {
          "name": "38218",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/38218"
        },
        {
          "name": "33652",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/33652"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-0375",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "ADV-2010-0178",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2010/0178"
            },
            {
              "name": "http://service.real.com/realplayer/security/01192010_player/en/",
              "refsource": "CONFIRM",
              "url": "http://service.real.com/realplayer/security/01192010_player/en/"
            },
            {
              "name": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html",
              "refsource": "MISC",
              "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
            },
            {
              "name": "33810",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/33810"
            },
            {
              "name": "realplayer-ivr-bo(48567)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"
            },
            {
              "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
            },
            {
              "name": "38218",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/38218"
            },
            {
              "name": "33652",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/33652"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2009-0375",
    "datePublished": "2009-02-08T21:00:00",
    "dateReserved": "2009-01-30T00:00:00",
    "dateUpdated": "2024-08-07T04:31:26.226Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"72A94395-4F1A-4310-85A8-F46A76EE3A12\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin.\"}, {\"lang\": \"es\", \"value\": \"Archivo dll en RealNetworks RealPlayer 11, permite a atacantes remotos ejecutar c\\u00f3digo de su elecci\\u00f3n a trav\\u00e9s de un archivo Internet Video Recording (IVR) manipulado con un campo con un nombre de archivo largo que contiene un entero largo, lo que provoca la sobreescritura de una regi\\u00f3n de memoria con un valor en bytes de 0x00, relacionado con el uso de RealPlayer a trav\\u00e9s del componente de Windows Explorer.\"}]",
      "evaluatorComment": "Per http://www.fortiguardcenter.com/advisory/FGA-2009-04.html:\r\n\r\n\"It should be noted that the victim does not necessarily have to open the malicious file for exploitation to occur: the vulnerabilities lie in a DLL that is also used as a plugin for the Windows Explorer shell. A successful attack could take place by merely previewing the IVR file through Windows Explorer. \"",
      "id": "CVE-2009-0375",
      "lastModified": "2024-11-21T00:59:45.590",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 9.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": true, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2009-02-08T21:30:09.797",
      "references": "[{\"url\": \"http://secunia.com/advisories/33810\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/38218\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://service.real.com/realplayer/security/01192010_player/en/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.fortiguardcenter.com/advisory/FGA-2009-04.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/500722/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/33652\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2010/0178\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/48567\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/33810\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/38218\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://service.real.com/realplayer/security/01192010_player/en/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.fortiguardcenter.com/advisory/FGA-2009-04.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/500722/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/33652\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2010/0178\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/48567\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2009-0375\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2009-02-08T21:30:09.797\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin.\"},{\"lang\":\"es\",\"value\":\"Archivo dll en RealNetworks RealPlayer 11, permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un archivo Internet Video Recording (IVR) manipulado con un campo con un nombre de archivo largo que contiene un entero largo, lo que provoca la sobreescritura de una regi\u00f3n de memoria con un valor en bytes de 0x00, relacionado con el uso de RealPlayer a trav\u00e9s del componente de Windows Explorer.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72A94395-4F1A-4310-85A8-F46A76EE3A12\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/33810\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/38218\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://service.real.com/realplayer/security/01192010_player/en/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.fortiguardcenter.com/advisory/FGA-2009-04.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/500722/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/33652\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/0178\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/48567\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/33810\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/38218\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://service.real.com/realplayer/security/01192010_player/en/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.fortiguardcenter.com/advisory/FGA-2009-04.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/500722/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/33652\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/0178\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/48567\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorComment\":\"Per http://www.fortiguardcenter.com/advisory/FGA-2009-04.html:\\r\\n\\r\\n\\\"It should be noted that the victim does not necessarily have to open the malicious file for exploitation to occur: the vulnerabilities lie in a DLL that is also used as a plugin for the Windows Explorer shell. A successful attack could take place by merely previewing the IVR file through Windows Explorer. \\\"\"}}"
  }
}

FKIE_CVE-2009-0375

Vulnerability from fkie_nvd - Published: 2009-02-08 21:30 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

	URL	Tags
	cve@mitre.org	http://secunia.com/advisories/33810
	cve@mitre.org	http://secunia.com/advisories/38218
	cve@mitre.org	http://service.real.com/realplayer/security/01192010_player/en/
	cve@mitre.org	http://www.fortiguardcenter.com/advisory/FGA-2009-04.html
	cve@mitre.org	http://www.securityfocus.com/archive/1/500722/100/0/threaded
	cve@mitre.org	http://www.securityfocus.com/bid/33652
	cve@mitre.org	http://www.vupen.com/english/advisories/2010/0178
	cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/48567
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/33810
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/38218
	af854a3a-2127-422b-91ae-364da2661108	http://service.real.com/realplayer/security/01192010_player/en/
	af854a3a-2127-422b-91ae-364da2661108	http://www.fortiguardcenter.com/advisory/FGA-2009-04.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/500722/100/0/threaded
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/33652
	af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2010/0178
	af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/48567

Impacted products

	Vendor	Product	Version
	realnetworks	realplayer	11

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*",
              "matchCriteriaId": "72A94395-4F1A-4310-85A8-F46A76EE3A12",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin."
    },
    {
      "lang": "es",
      "value": "Archivo dll en RealNetworks RealPlayer 11, permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un archivo Internet Video Recording (IVR) manipulado con un campo con un nombre de archivo largo que contiene un entero largo, lo que provoca la sobreescritura de una regi\u00f3n de memoria con un valor en bytes de 0x00, relacionado con el uso de RealPlayer a trav\u00e9s del componente de Windows Explorer."
    }
  ],
  "evaluatorComment": "Per http://www.fortiguardcenter.com/advisory/FGA-2009-04.html:\r\n\r\n\"It should be noted that the victim does not necessarily have to open the malicious file for exploitation to occur: the vulnerabilities lie in a DLL that is also used as a plugin for the Windows Explorer shell. A successful attack could take place by merely previewing the IVR file through Windows Explorer. \"",
  "id": "CVE-2009-0375",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2009-02-08T21:30:09.797",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/33810"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/38218"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://service.real.com/realplayer/security/01192010_player/en/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/33652"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2010/0178"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/33810"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/38218"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://service.real.com/realplayer/security/01192010_player/en/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/33652"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2010/0178"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTA-2010-AVI-023

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités dans les produits RealNetworks permettent à un utilisateur distant malintentionné de provoquer un déni de service ou d'exécuter du code arbitraire.

Description

Onze vulnérabilités, de type débordement de mémoire, ont été découvertes dans les produits RealPlayer et Helix Player. Ces vulnérabilités peuvent être exploitées par une personne distante malveillante afin de provoquer un déni de service ou encore d'exécuter du code arbitraire.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Les versions suivantes pour Microsoft Windows sont affectées :

RealPlayer SP 1.0.0 et 1.0.1 ;
RealPlayer 11.x ;
RealPlayer 10.x ;
RealPlayer Enterprise.

Les versions suivantes pour Mac OS sont affectées :

Mac RealPlayer 11.x ;
Mac RealPlayer 10.x.

Les versions suivantes pour GNU/Linux sont affectées :

GNU/Linux RealPlayer 11.x ;
GNU/Linux RealPlayer 10.x ;
Helix RealPlayer 11.x ;
Helix RealPlayer 10.x.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Mise à jour de sécurité RealNetworks du 19 janvier 2010	None	vendor-advisory
Bulletin de sécurité Sun Solaris du 13 juillet 2010 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eLes versions suivantes pour Microsoft  Windows sont affect\u00e9es :  \u003cUL\u003e    \u003cLI\u003eRealPlayer SP 1.0.0 et 1.0.1 ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer 10.x ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer Enterprise.\u003c/LI\u003e  \u003c/UL\u003e  \u003cP\u003eLes versions suivantes pour Mac OS sont affect\u00e9es :\u003c/P\u003e  \u003cUL\u003e    \u003cLI\u003eMac RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eMac RealPlayer 10.x.\u003c/LI\u003e  \u003c/UL\u003e  \u003cP\u003eLes versions suivantes pour GNU/Linux sont affect\u00e9es :\u003c/P\u003e  \u003cUL\u003e    \u003cLI\u003eGNU/Linux RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eGNU/Linux RealPlayer 10.x ;\u003c/LI\u003e    \u003cLI\u003eHelix RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eHelix RealPlayer 10.x.\u003c/LI\u003e  \u003c/UL\u003e\u003c/p\u003e",
  "content": "## Description\n\nOnze vuln\u00e9rabilit\u00e9s, de type d\u00e9bordement de m\u00e9moire, ont \u00e9t\u00e9 d\u00e9couvertes\ndans les produits RealPlayer et Helix Player. Ces vuln\u00e9rabilit\u00e9s peuvent\n\u00eatre exploit\u00e9es par une personne distante malveillante afin de provoquer\nun d\u00e9ni de service ou encore d\u0027ex\u00e9cuter du code arbitraire.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-4246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4246"
    },
    {
      "name": "CVE-2009-0376",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0376"
    },
    {
      "name": "CVE-2009-4242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4242"
    },
    {
      "name": "CVE-2009-4248",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4248"
    },
    {
      "name": "CVE-2009-4245",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4245"
    },
    {
      "name": "CVE-2009-4241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4241"
    },
    {
      "name": "CVE-2009-4247",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4247"
    },
    {
      "name": "CVE-2009-0375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0375"
    },
    {
      "name": "CVE-2009-4243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4243"
    },
    {
      "name": "CVE-2009-4244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4244"
    },
    {
      "name": "CVE-2009-4257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4257"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Sun Solaris du 13 juillet 2010 :",
      "url": "http://blogs.sun.com/security/entry/cve_2009_4247_buffer_overflow"
    }
  ],
  "reference": "CERTA-2010-AVI-023",
  "revisions": [
    {
      "description": "version initiale ;",
      "revision_date": "2010-01-21T00:00:00.000000"
    },
    {
      "description": "correction du lien vers la mise \u00e0 jour de s\u00e9curit\u00e9 ;",
      "revision_date": "2010-02-16T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 Sun Solaris.",
      "revision_date": "2010-07-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s dans les produits RealNetworks permettent \u00e0 un\nutilisateur distant malintentionn\u00e9 de provoquer un d\u00e9ni de service ou\nd\u0027ex\u00e9cuter du code arbitraire.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Realplayer et Helix Player",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 RealNetworks du 19 janvier 2010",
      "url": "http://service.real.com/realplayer/security/01192010_player/fr/"
    }
  ]
}

CERTA-2010-AVI-023

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités dans les produits RealNetworks permettent à un utilisateur distant malintentionné de provoquer un déni de service ou d'exécuter du code arbitraire.

Description

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Les versions suivantes pour Microsoft Windows sont affectées :

RealPlayer SP 1.0.0 et 1.0.1 ;
RealPlayer 11.x ;
RealPlayer 10.x ;
RealPlayer Enterprise.

Les versions suivantes pour Mac OS sont affectées :

Mac RealPlayer 11.x ;
Mac RealPlayer 10.x.

Les versions suivantes pour GNU/Linux sont affectées :

GNU/Linux RealPlayer 11.x ;
GNU/Linux RealPlayer 10.x ;
Helix RealPlayer 11.x ;
Helix RealPlayer 10.x.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Mise à jour de sécurité RealNetworks du 19 janvier 2010	None	vendor-advisory
Bulletin de sécurité Sun Solaris du 13 juillet 2010 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eLes versions suivantes pour Microsoft  Windows sont affect\u00e9es :  \u003cUL\u003e    \u003cLI\u003eRealPlayer SP 1.0.0 et 1.0.1 ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer 10.x ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer Enterprise.\u003c/LI\u003e  \u003c/UL\u003e  \u003cP\u003eLes versions suivantes pour Mac OS sont affect\u00e9es :\u003c/P\u003e  \u003cUL\u003e    \u003cLI\u003eMac RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eMac RealPlayer 10.x.\u003c/LI\u003e  \u003c/UL\u003e  \u003cP\u003eLes versions suivantes pour GNU/Linux sont affect\u00e9es :\u003c/P\u003e  \u003cUL\u003e    \u003cLI\u003eGNU/Linux RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eGNU/Linux RealPlayer 10.x ;\u003c/LI\u003e    \u003cLI\u003eHelix RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eHelix RealPlayer 10.x.\u003c/LI\u003e  \u003c/UL\u003e\u003c/p\u003e",
  "content": "## Description\n\nOnze vuln\u00e9rabilit\u00e9s, de type d\u00e9bordement de m\u00e9moire, ont \u00e9t\u00e9 d\u00e9couvertes\ndans les produits RealPlayer et Helix Player. Ces vuln\u00e9rabilit\u00e9s peuvent\n\u00eatre exploit\u00e9es par une personne distante malveillante afin de provoquer\nun d\u00e9ni de service ou encore d\u0027ex\u00e9cuter du code arbitraire.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-4246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4246"
    },
    {
      "name": "CVE-2009-0376",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0376"
    },
    {
      "name": "CVE-2009-4242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4242"
    },
    {
      "name": "CVE-2009-4248",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4248"
    },
    {
      "name": "CVE-2009-4245",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4245"
    },
    {
      "name": "CVE-2009-4241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4241"
    },
    {
      "name": "CVE-2009-4247",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4247"
    },
    {
      "name": "CVE-2009-0375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0375"
    },
    {
      "name": "CVE-2009-4243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4243"
    },
    {
      "name": "CVE-2009-4244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4244"
    },
    {
      "name": "CVE-2009-4257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4257"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Sun Solaris du 13 juillet 2010 :",
      "url": "http://blogs.sun.com/security/entry/cve_2009_4247_buffer_overflow"
    }
  ],
  "reference": "CERTA-2010-AVI-023",
  "revisions": [
    {
      "description": "version initiale ;",
      "revision_date": "2010-01-21T00:00:00.000000"
    },
    {
      "description": "correction du lien vers la mise \u00e0 jour de s\u00e9curit\u00e9 ;",
      "revision_date": "2010-02-16T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 Sun Solaris.",
      "revision_date": "2010-07-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s dans les produits RealNetworks permettent \u00e0 un\nutilisateur distant malintentionn\u00e9 de provoquer un d\u00e9ni de service ou\nd\u0027ex\u00e9cuter du code arbitraire.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Realplayer et Helix Player",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 RealNetworks du 19 janvier 2010",
      "url": "http://service.real.com/realplayer/security/01192010_player/fr/"
    }
  ]
}

GSD-2009-0375

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2009-0375

Aliases

CVE-2009-0375

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2009-0375",
    "description": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin.",
    "id": "GSD-2009-0375"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2009-0375"
      ],
      "details": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin.",
      "id": "GSD-2009-0375",
      "modified": "2023-12-13T01:19:44.403979Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2009-0375",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "ADV-2010-0178",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2010/0178"
          },
          {
            "name": "http://service.real.com/realplayer/security/01192010_player/en/",
            "refsource": "CONFIRM",
            "url": "http://service.real.com/realplayer/security/01192010_player/en/"
          },
          {
            "name": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html",
            "refsource": "MISC",
            "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
          },
          {
            "name": "33810",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/33810"
          },
          {
            "name": "realplayer-ivr-bo(48567)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"
          },
          {
            "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
          },
          {
            "name": "38218",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/38218"
          },
          {
            "name": "33652",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/33652"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-0375"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-94"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
            },
            {
              "name": "33652",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/33652"
            },
            {
              "name": "http://service.real.com/realplayer/security/01192010_player/en/",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://service.real.com/realplayer/security/01192010_player/en/"
            },
            {
              "name": "38218",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/38218"
            },
            {
              "name": "33810",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/33810"
            },
            {
              "name": "ADV-2010-0178",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2010/0178"
            },
            {
              "name": "realplayer-ivr-bo(48567)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"
            },
            {
              "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": true,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2018-10-11T21:01Z",
      "publishedDate": "2009-02-08T21:30Z"
    }
  }
}

GHSA-X474-4899-V7HV

Vulnerability from github – Published: 2022-05-02 03:14 – Updated: 2025-04-09 04:04

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2009-0375"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-94"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2009-02-08T21:30:00Z",
    "severity": "HIGH"
  },
  "details": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin.",
  "id": "GHSA-x474-4899-v7hv",
  "modified": "2025-04-09T04:04:24Z",
  "published": "2022-05-02T03:14:59Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0375"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/33810"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/38218"
    },
    {
      "type": "WEB",
      "url": "http://service.real.com/realplayer/security/01192010_player/en"
    },
    {
      "type": "WEB",
      "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/33652"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2010/0178"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2009-0375 (GCVE-0-2009-0375)

FKIE_CVE-2009-0375

CERTA-2010-AVI-023

Description

Solution

CERTA-2010-AVI-023

Description

Solution

GSD-2009-0375

GHSA-X474-4899-V7HV

Tags

Sightings

Nomenclature