9.3
CVE-2010-0117
- EPSS 5.04%
- Veröffentlicht 30.08.2010 20:00:01
- Zuletzt bearbeitet 16.06.2026 23:15:30
- Quelle PSIRT-CNA@flexerasoftware.com
- CVE-Watchlists
- Unerledigt
RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows do not properly handle dimensions during YUV420 transformations, which might allow remote attackers to execute arbitrary code via crafted MP4 content.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Realnetworks ≫ Realplayer Version11.0
Realnetworks ≫ Realplayer Version11.1
Realnetworks ≫ Realplayer Sp Version1.0.0
Realnetworks ≫ Realplayer Sp Version1.0.1
Realnetworks ≫ Realplayer Sp Version1.0.2
Realnetworks ≫ Realplayer Sp Version1.0.5
Realnetworks ≫ Realplayer Sp Version1.1
Realnetworks ≫ Realplayer Sp Version1.1.1
Realnetworks ≫ Realplayer Sp Version1.1.2
Realnetworks ≫ Realplayer Sp Version1.1.3
Realnetworks ≫ Realplayer Sp Version1.1.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.04% | 0.912 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://secunia.com/advisories/41096
http://secunia.com/advisories/41154
http://service.real.com/realplayer/security/08262010_player/en/
http://www.securitytracker.com/id?1024370
http://www.vupen.com/english/advisories/2010/2216
http://secunia.com/secunia_research/2010-5/
https://exchange.xforce.ibmcloud.com/vulnerabilities/61421
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7169