CVE-2005-0191

Sažetak

Off-by-one buffer overflow in the processing of tags in Real Metadata Package (RMP) files in RealPlayer 10.5 (6.0.12.1040) and earlier could allow remote attackers to execute arbitrary code via a long tag.

Reference

http://marc.info/?l=bugtraq&m=109707741022291&w=2
http://marc.info/?l=bugtraq&m=110616302008401&w=2
http://service.real.com/help/faq/security/040928_player/EN/
http://www.ngssoftware.com/advisories/real-03full.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/18982

CVSS

Base:	5.1
Impact:	6.4
Exploitability:	4.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:H/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

16-11-2017 - 18:30

Objavljeno

19-01-2005 - 05:00