Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2010-0117 | First vendor Publication | 2010-08-30 |
Vendor | Cve | Last vendor Modification | 2017-09-19 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows do not properly handle dimensions during YUV420 transformations, which might allow remote attackers to execute arbitrary code via crafted MP4 content. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0117 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:7169 | |||
Oval ID: | oval:org.mitre.oval:def:7169 | ||
Title: | Vulnerability in RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows during YUV420 transformations | ||
Description: | RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows do not properly handle dimensions during YUV420 transformations, which might allow remote attackers to execute arbitrary code via crafted MP4 content. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0117 | Version: | 3 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | RealPlayer RealPlayer SP |
Definition Synopsis: | |||
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2010-09-08 | Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win) File : nvt/gb_realplayer_mult_vuln_win.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
67735 | RealPlayer Multiple Products YUV420 Transformation Crafted MP4 Content Handli... |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-08-27 | Name : The remote Windows application is affected by multiple vulnerabilities. File : realplayer_12_0_0_879.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2020-05-23 00:25:05 |
|
2017-09-19 09:23:35 |
|
2017-08-17 09:22:53 |
|
2016-06-29 00:10:01 |
|
2016-04-26 19:30:24 |
|
2014-02-17 10:53:14 |
|
2013-05-10 23:16:05 |
|