CVE-2007-5081
published 2007-10-31CVE-2007-5081: Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers…
PriorityP342critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
5.39%
91.7th percentile
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted RM file.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| realnetworks | realone_player | — | — |
| realnetworks | realone_player | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-h7gj-9j6j-r96x: Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10
ghsa_unreviewed·2022-05-01
CVE-2007-5081 [HIGH] CWE-119 GHSA-h7gj-9j6j-r96x: Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted RM file.
Red Hat
realplayer rm file heap overflow
vendor_redhat·2007-10-25·CVSS 9.3
CVE-2007-5081 [CRITICAL] realplayer rm file heap overflow
realplayer rm file heap overflow
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted RM file.
No detection rules found.
No public exploits indexed.
http://osvdb.org/38340http://secunia.com/advisories/27361http://securitytracker.com/id?1018866http://service.real.com/realplayer/security/10252007_player/en/http://www.attrition.org/pipermail/vim/2007-October/001841.htmlhttp://www.securityfocus.com/bid/26214http://www.vupen.com/english/advisories/2007/3628https://exchange.xforce.ibmcloud.com/vulnerabilities/37435https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11625http://osvdb.org/38340http://secunia.com/advisories/27361http://securitytracker.com/id?1018866http://service.real.com/realplayer/security/10252007_player/en/http://www.attrition.org/pipermail/vim/2007-October/001841.htmlhttp://www.securityfocus.com/bid/26214http://www.vupen.com/english/advisories/2007/3628https://exchange.xforce.ibmcloud.com/vulnerabilities/37435https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11625
2007-10-31
Published