Vulnerability-Lookup

CVE-2009-0376 (GCVE-0-2009-0376)

Vulnerability from cvelistv5 – Published: 2009-02-08 21:00 – Updated: 2024-08-07 04:31

Summary

Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.securityfocus.com/archive/1/509097/100…	mailing-listx_refsource_BUGTRAQ
	http://www.vupen.com/english/advisories/2010/0178	vdb-entryx_refsource_VUPEN
	http://service.real.com/realplayer/security/01192…	x_refsource_CONFIRM
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://www.fortiguardcenter.com/advisory/FGA-2009…	x_refsource_MISC
	http://secunia.com/advisories/33810	third-party-advisoryx_refsource_SECUNIA
	http://www.zerodayinitiative.com/advisories/ZDI-10-009/	x_refsource_MISC
	http://www.securityfocus.com/archive/1/500722/100…	mailing-listx_refsource_BUGTRAQ
	http://secunia.com/advisories/38218	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/bid/33652	vdb-entryx_refsource_BID

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T04:31:25.916Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20100121 ZDI-10-009: RealNetworks RealPlayer IVR Format Remote Code Execution Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/509097/100/0/threaded"
          },
          {
            "name": "ADV-2010-0178",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2010/0178"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://service.real.com/realplayer/security/01192010_player/en/"
          },
          {
            "name": "realplayer-ivr-code-execution(48568)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48568"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
          },
          {
            "name": "33810",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/33810"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/"
          },
          {
            "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
          },
          {
            "name": "38218",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/38218"
          },
          {
            "name": "33652",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/33652"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2009-02-05T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-11T19:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "20100121 ZDI-10-009: RealNetworks RealPlayer IVR Format Remote Code Execution Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/509097/100/0/threaded"
        },
        {
          "name": "ADV-2010-0178",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2010/0178"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://service.real.com/realplayer/security/01192010_player/en/"
        },
        {
          "name": "realplayer-ivr-code-execution(48568)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48568"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
        },
        {
          "name": "33810",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/33810"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/"
        },
        {
          "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
        },
        {
          "name": "38218",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/38218"
        },
        {
          "name": "33652",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/33652"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-0376",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20100121 ZDI-10-009: RealNetworks RealPlayer IVR Format Remote Code Execution Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/509097/100/0/threaded"
            },
            {
              "name": "ADV-2010-0178",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2010/0178"
            },
            {
              "name": "http://service.real.com/realplayer/security/01192010_player/en/",
              "refsource": "CONFIRM",
              "url": "http://service.real.com/realplayer/security/01192010_player/en/"
            },
            {
              "name": "realplayer-ivr-code-execution(48568)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48568"
            },
            {
              "name": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html",
              "refsource": "MISC",
              "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
            },
            {
              "name": "33810",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/33810"
            },
            {
              "name": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/",
              "refsource": "MISC",
              "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/"
            },
            {
              "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
            },
            {
              "name": "38218",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/38218"
            },
            {
              "name": "33652",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/33652"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2009-0376",
    "datePublished": "2009-02-08T21:00:00",
    "dateReserved": "2009-01-30T00:00:00",
    "dateUpdated": "2024-08-07T04:31:25.916Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"72A94395-4F1A-4310-85A8-F46A76EE3A12\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin.\"}, {\"lang\": \"es\", \"value\": \"Archivo dll en RealNetworks RealPlayer 11, permite a atacantes remotos ejecutar c\\u00f3digo de su elecci\\u00f3n a trav\\u00e9s de un archivo Internet Video Recording (IVR) manipulado con un campo modificado que controla el tama\\u00f1o de una estructura sin especificar y lanza una corrupci\\u00f3n en el mont\\u00edculo (heap), relacionado con el uso de RealPlayer a trav\\u00e9s del componente de Windows Explorer.\"}]",
      "id": "CVE-2009-0376",
      "lastModified": "2024-11-21T00:59:45.733",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 9.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2009-02-08T21:30:09.813",
      "references": "[{\"url\": \"http://secunia.com/advisories/33810\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/38218\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://service.real.com/realplayer/security/01192010_player/en/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.fortiguardcenter.com/advisory/FGA-2009-04.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/500722/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/509097/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/33652\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2010/0178\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.zerodayinitiative.com/advisories/ZDI-10-009/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/48568\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/33810\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/38218\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://service.real.com/realplayer/security/01192010_player/en/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.fortiguardcenter.com/advisory/FGA-2009-04.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/500722/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/509097/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/33652\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2010/0178\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.zerodayinitiative.com/advisories/ZDI-10-009/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/48568\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2009-0376\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2009-02-08T21:30:09.813\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin.\"},{\"lang\":\"es\",\"value\":\"Archivo dll en RealNetworks RealPlayer 11, permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un archivo Internet Video Recording (IVR) manipulado con un campo modificado que controla el tama\u00f1o de una estructura sin especificar y lanza una corrupci\u00f3n en el mont\u00edculo (heap), relacionado con el uso de RealPlayer a trav\u00e9s del componente de Windows Explorer.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72A94395-4F1A-4310-85A8-F46A76EE3A12\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/33810\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/38218\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://service.real.com/realplayer/security/01192010_player/en/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.fortiguardcenter.com/advisory/FGA-2009-04.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/500722/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/509097/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/33652\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/0178\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.zerodayinitiative.com/advisories/ZDI-10-009/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/48568\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/33810\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/38218\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://service.real.com/realplayer/security/01192010_player/en/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.fortiguardcenter.com/advisory/FGA-2009-04.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/500722/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/509097/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/33652\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/0178\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.zerodayinitiative.com/advisories/ZDI-10-009/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/48568\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

FKIE_CVE-2009-0376

Vulnerability from fkie_nvd - Published: 2009-02-08 21:30 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

	URL	Tags
	cve@mitre.org	http://secunia.com/advisories/33810
	cve@mitre.org	http://secunia.com/advisories/38218
	cve@mitre.org	http://service.real.com/realplayer/security/01192010_player/en/
	cve@mitre.org	http://www.fortiguardcenter.com/advisory/FGA-2009-04.html
	cve@mitre.org	http://www.securityfocus.com/archive/1/500722/100/0/threaded
	cve@mitre.org	http://www.securityfocus.com/archive/1/509097/100/0/threaded
	cve@mitre.org	http://www.securityfocus.com/bid/33652
	cve@mitre.org	http://www.vupen.com/english/advisories/2010/0178
	cve@mitre.org	http://www.zerodayinitiative.com/advisories/ZDI-10-009/
	cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/48568
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/33810
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/38218
	af854a3a-2127-422b-91ae-364da2661108	http://service.real.com/realplayer/security/01192010_player/en/
	af854a3a-2127-422b-91ae-364da2661108	http://www.fortiguardcenter.com/advisory/FGA-2009-04.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/500722/100/0/threaded
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/509097/100/0/threaded
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/33652
	af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2010/0178
	af854a3a-2127-422b-91ae-364da2661108	http://www.zerodayinitiative.com/advisories/ZDI-10-009/
	af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/48568

Impacted products

	Vendor	Product	Version
	realnetworks	realplayer	11

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*",
              "matchCriteriaId": "72A94395-4F1A-4310-85A8-F46A76EE3A12",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin."
    },
    {
      "lang": "es",
      "value": "Archivo dll en RealNetworks RealPlayer 11, permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un archivo Internet Video Recording (IVR) manipulado con un campo modificado que controla el tama\u00f1o de una estructura sin especificar y lanza una corrupci\u00f3n en el mont\u00edculo (heap), relacionado con el uso de RealPlayer a trav\u00e9s del componente de Windows Explorer."
    }
  ],
  "id": "CVE-2009-0376",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2009-02-08T21:30:09.813",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/33810"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/38218"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://service.real.com/realplayer/security/01192010_player/en/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/509097/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/33652"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2010/0178"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48568"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/33810"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/38218"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://service.real.com/realplayer/security/01192010_player/en/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/509097/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/33652"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2010/0178"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48568"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTA-2010-AVI-023

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités dans les produits RealNetworks permettent à un utilisateur distant malintentionné de provoquer un déni de service ou d'exécuter du code arbitraire.

Description

Onze vulnérabilités, de type débordement de mémoire, ont été découvertes dans les produits RealPlayer et Helix Player. Ces vulnérabilités peuvent être exploitées par une personne distante malveillante afin de provoquer un déni de service ou encore d'exécuter du code arbitraire.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Les versions suivantes pour Microsoft Windows sont affectées :

RealPlayer SP 1.0.0 et 1.0.1 ;
RealPlayer 11.x ;
RealPlayer 10.x ;
RealPlayer Enterprise.

Les versions suivantes pour Mac OS sont affectées :

Mac RealPlayer 11.x ;
Mac RealPlayer 10.x.

Les versions suivantes pour GNU/Linux sont affectées :

GNU/Linux RealPlayer 11.x ;
GNU/Linux RealPlayer 10.x ;
Helix RealPlayer 11.x ;
Helix RealPlayer 10.x.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Mise à jour de sécurité RealNetworks du 19 janvier 2010	None	vendor-advisory
Bulletin de sécurité Sun Solaris du 13 juillet 2010 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eLes versions suivantes pour Microsoft  Windows sont affect\u00e9es :  \u003cUL\u003e    \u003cLI\u003eRealPlayer SP 1.0.0 et 1.0.1 ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer 10.x ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer Enterprise.\u003c/LI\u003e  \u003c/UL\u003e  \u003cP\u003eLes versions suivantes pour Mac OS sont affect\u00e9es :\u003c/P\u003e  \u003cUL\u003e    \u003cLI\u003eMac RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eMac RealPlayer 10.x.\u003c/LI\u003e  \u003c/UL\u003e  \u003cP\u003eLes versions suivantes pour GNU/Linux sont affect\u00e9es :\u003c/P\u003e  \u003cUL\u003e    \u003cLI\u003eGNU/Linux RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eGNU/Linux RealPlayer 10.x ;\u003c/LI\u003e    \u003cLI\u003eHelix RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eHelix RealPlayer 10.x.\u003c/LI\u003e  \u003c/UL\u003e\u003c/p\u003e",
  "content": "## Description\n\nOnze vuln\u00e9rabilit\u00e9s, de type d\u00e9bordement de m\u00e9moire, ont \u00e9t\u00e9 d\u00e9couvertes\ndans les produits RealPlayer et Helix Player. Ces vuln\u00e9rabilit\u00e9s peuvent\n\u00eatre exploit\u00e9es par une personne distante malveillante afin de provoquer\nun d\u00e9ni de service ou encore d\u0027ex\u00e9cuter du code arbitraire.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-4246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4246"
    },
    {
      "name": "CVE-2009-0376",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0376"
    },
    {
      "name": "CVE-2009-4242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4242"
    },
    {
      "name": "CVE-2009-4248",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4248"
    },
    {
      "name": "CVE-2009-4245",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4245"
    },
    {
      "name": "CVE-2009-4241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4241"
    },
    {
      "name": "CVE-2009-4247",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4247"
    },
    {
      "name": "CVE-2009-0375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0375"
    },
    {
      "name": "CVE-2009-4243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4243"
    },
    {
      "name": "CVE-2009-4244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4244"
    },
    {
      "name": "CVE-2009-4257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4257"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Sun Solaris du 13 juillet 2010 :",
      "url": "http://blogs.sun.com/security/entry/cve_2009_4247_buffer_overflow"
    }
  ],
  "reference": "CERTA-2010-AVI-023",
  "revisions": [
    {
      "description": "version initiale ;",
      "revision_date": "2010-01-21T00:00:00.000000"
    },
    {
      "description": "correction du lien vers la mise \u00e0 jour de s\u00e9curit\u00e9 ;",
      "revision_date": "2010-02-16T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 Sun Solaris.",
      "revision_date": "2010-07-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s dans les produits RealNetworks permettent \u00e0 un\nutilisateur distant malintentionn\u00e9 de provoquer un d\u00e9ni de service ou\nd\u0027ex\u00e9cuter du code arbitraire.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Realplayer et Helix Player",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 RealNetworks du 19 janvier 2010",
      "url": "http://service.real.com/realplayer/security/01192010_player/fr/"
    }
  ]
}

CERTA-2010-AVI-023

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités dans les produits RealNetworks permettent à un utilisateur distant malintentionné de provoquer un déni de service ou d'exécuter du code arbitraire.

Description

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Les versions suivantes pour Microsoft Windows sont affectées :

RealPlayer SP 1.0.0 et 1.0.1 ;
RealPlayer 11.x ;
RealPlayer 10.x ;
RealPlayer Enterprise.

Les versions suivantes pour Mac OS sont affectées :

Mac RealPlayer 11.x ;
Mac RealPlayer 10.x.

Les versions suivantes pour GNU/Linux sont affectées :

GNU/Linux RealPlayer 11.x ;
GNU/Linux RealPlayer 10.x ;
Helix RealPlayer 11.x ;
Helix RealPlayer 10.x.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Mise à jour de sécurité RealNetworks du 19 janvier 2010	None	vendor-advisory
Bulletin de sécurité Sun Solaris du 13 juillet 2010 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eLes versions suivantes pour Microsoft  Windows sont affect\u00e9es :  \u003cUL\u003e    \u003cLI\u003eRealPlayer SP 1.0.0 et 1.0.1 ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer 10.x ;\u003c/LI\u003e    \u003cLI\u003eRealPlayer Enterprise.\u003c/LI\u003e  \u003c/UL\u003e  \u003cP\u003eLes versions suivantes pour Mac OS sont affect\u00e9es :\u003c/P\u003e  \u003cUL\u003e    \u003cLI\u003eMac RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eMac RealPlayer 10.x.\u003c/LI\u003e  \u003c/UL\u003e  \u003cP\u003eLes versions suivantes pour GNU/Linux sont affect\u00e9es :\u003c/P\u003e  \u003cUL\u003e    \u003cLI\u003eGNU/Linux RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eGNU/Linux RealPlayer 10.x ;\u003c/LI\u003e    \u003cLI\u003eHelix RealPlayer 11.x ;\u003c/LI\u003e    \u003cLI\u003eHelix RealPlayer 10.x.\u003c/LI\u003e  \u003c/UL\u003e\u003c/p\u003e",
  "content": "## Description\n\nOnze vuln\u00e9rabilit\u00e9s, de type d\u00e9bordement de m\u00e9moire, ont \u00e9t\u00e9 d\u00e9couvertes\ndans les produits RealPlayer et Helix Player. Ces vuln\u00e9rabilit\u00e9s peuvent\n\u00eatre exploit\u00e9es par une personne distante malveillante afin de provoquer\nun d\u00e9ni de service ou encore d\u0027ex\u00e9cuter du code arbitraire.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-4246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4246"
    },
    {
      "name": "CVE-2009-0376",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0376"
    },
    {
      "name": "CVE-2009-4242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4242"
    },
    {
      "name": "CVE-2009-4248",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4248"
    },
    {
      "name": "CVE-2009-4245",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4245"
    },
    {
      "name": "CVE-2009-4241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4241"
    },
    {
      "name": "CVE-2009-4247",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4247"
    },
    {
      "name": "CVE-2009-0375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-0375"
    },
    {
      "name": "CVE-2009-4243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4243"
    },
    {
      "name": "CVE-2009-4244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4244"
    },
    {
      "name": "CVE-2009-4257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-4257"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Sun Solaris du 13 juillet 2010 :",
      "url": "http://blogs.sun.com/security/entry/cve_2009_4247_buffer_overflow"
    }
  ],
  "reference": "CERTA-2010-AVI-023",
  "revisions": [
    {
      "description": "version initiale ;",
      "revision_date": "2010-01-21T00:00:00.000000"
    },
    {
      "description": "correction du lien vers la mise \u00e0 jour de s\u00e9curit\u00e9 ;",
      "revision_date": "2010-02-16T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 Sun Solaris.",
      "revision_date": "2010-07-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s dans les produits RealNetworks permettent \u00e0 un\nutilisateur distant malintentionn\u00e9 de provoquer un d\u00e9ni de service ou\nd\u0027ex\u00e9cuter du code arbitraire.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Realplayer et Helix Player",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 RealNetworks du 19 janvier 2010",
      "url": "http://service.real.com/realplayer/security/01192010_player/fr/"
    }
  ]
}

GSD-2009-0376

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2009-0376

Aliases

CVE-2009-0376

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2009-0376",
    "description": "Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin.",
    "id": "GSD-2009-0376"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2009-0376"
      ],
      "details": "Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin.",
      "id": "GSD-2009-0376",
      "modified": "2023-12-13T01:19:44.093425Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2009-0376",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20100121 ZDI-10-009: RealNetworks RealPlayer IVR Format Remote Code Execution Vulnerability",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/509097/100/0/threaded"
          },
          {
            "name": "ADV-2010-0178",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2010/0178"
          },
          {
            "name": "http://service.real.com/realplayer/security/01192010_player/en/",
            "refsource": "CONFIRM",
            "url": "http://service.real.com/realplayer/security/01192010_player/en/"
          },
          {
            "name": "realplayer-ivr-code-execution(48568)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48568"
          },
          {
            "name": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html",
            "refsource": "MISC",
            "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
          },
          {
            "name": "33810",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/33810"
          },
          {
            "name": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/",
            "refsource": "MISC",
            "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/"
          },
          {
            "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
          },
          {
            "name": "38218",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/38218"
          },
          {
            "name": "33652",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/33652"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-0376"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "33652",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/33652"
            },
            {
              "name": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
            },
            {
              "name": "http://service.real.com/realplayer/security/01192010_player/en/",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://service.real.com/realplayer/security/01192010_player/en/"
            },
            {
              "name": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-009/"
            },
            {
              "name": "ADV-2010-0178",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2010/0178"
            },
            {
              "name": "33810",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/33810"
            },
            {
              "name": "38218",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/38218"
            },
            {
              "name": "realplayer-ivr-code-execution(48568)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48568"
            },
            {
              "name": "20100121 ZDI-10-009: RealNetworks RealPlayer IVR Format Remote Code Execution Vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/509097/100/0/threaded"
            },
            {
              "name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2018-10-11T21:01Z",
      "publishedDate": "2009-02-08T21:30Z"
    }
  }
}

GHSA-Q369-QC62-GMGR

Vulnerability from github – Published: 2022-05-02 03:14 – Updated: 2025-04-09 04:04

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2009-0376"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2009-02-08T21:30:00Z",
    "severity": "HIGH"
  },
  "details": "Heap-based buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a modified field that controls an unspecified structure length and triggers heap corruption, related to use of RealPlayer through a Windows Explorer plugin.",
  "id": "GHSA-q369-qc62-gmgr",
  "modified": "2025-04-09T04:04:24Z",
  "published": "2022-05-02T03:14:59Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0376"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48568"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/33810"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/38218"
    },
    {
      "type": "WEB",
      "url": "http://service.real.com/realplayer/security/01192010_player/en"
    },
    {
      "type": "WEB",
      "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/509097/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/33652"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2010/0178"
    },
    {
      "type": "WEB",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-009"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2009-0376 (GCVE-0-2009-0376)

FKIE_CVE-2009-0376

CERTA-2010-AVI-023

Description

Solution

CERTA-2010-AVI-023

Description

Solution

GSD-2009-0376

GHSA-Q369-QC62-GMGR

Tags

Sightings

Nomenclature