CVE-2005-1766
published 2005-06-28CVE-2005-1766: Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on Windows, and 10, 10.0.1.436, and other versions before 10.0.5 on Linux, allows…
PriorityP428medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
4.11%
89.5th percentile
Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on Windows, and 10, 10.0.1.436, and other versions before 10.0.5 on Linux, allows remote attackers to execute arbitrary code via a RealMedia file with a long RealText string, such as an SMIL file.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| realnetworks | realplayer | <= 10.0.5 | — |
CVSS provenance
nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
vendor_redhat5.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-6cqv-mc2f-9hj8: Heap-based buffer overflow in rtffplin
ghsa_unreviewed·2022-05-01
CVE-2005-1766 [MEDIUM] GHSA-6cqv-mc2f-9hj8: Heap-based buffer overflow in rtffplin
Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on Windows, and 10, 10.0.1.436, and other versions before 10.0.5 on Linux, allows remote attackers to execute arbitrary code via a RealMedia file with a long RealText string, such as an SMIL file.
Red Hat
security flaw
vendor_redhat·2005-06-23·CVSS 5.1
CVE-2005-1766 [MEDIUM] security flaw
security flaw
Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on Windows, and 10, 10.0.1.436, and other versions before 10.0.5 on Linux, allows remote attackers to execute arbitrary code via a RealMedia file with a long RealText string, such as an SMIL file.
No detection rules found.
No public exploits indexed.
http://secunia.com/advisories/16981http://service.real.com/help/faq/security/050623_player/EN/http://www.debian.org/security/2005/dsa-826http://www.idefense.com/application/poi/display?id=250&type=vulnerabilities&flashstatus=truehttp://www.novell.com/linux/security/advisories/2005_37_real_player.htmlhttp://www.redhat.com/support/errata/RHSA-2005-517.htmlhttp://www.redhat.com/support/errata/RHSA-2005-523.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9509http://secunia.com/advisories/16981http://service.real.com/help/faq/security/050623_player/EN/http://www.debian.org/security/2005/dsa-826http://www.idefense.com/application/poi/display?id=250&type=vulnerabilities&flashstatus=truehttp://www.novell.com/linux/security/advisories/2005_37_real_player.htmlhttp://www.redhat.com/support/errata/RHSA-2005-517.htmlhttp://www.redhat.com/support/errata/RHSA-2005-523.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9509
2005-06-28
Published