CVE-2010-0117
published 2010-08-30CVE-2010-0117: RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows do not properly handle dimensions during YUV420 transformations, which…
PriorityP350critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
5.04%
91.2th percentile
RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows do not properly handle dimensions during YUV420 transformations, which might allow remote attackers to execute arbitrary code via crafted MP4 content.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/41096http://secunia.com/advisories/41154http://secunia.com/secunia_research/2010-5/http://service.real.com/realplayer/security/08262010_player/en/http://www.securitytracker.com/id?1024370http://www.vupen.com/english/advisories/2010/2216https://exchange.xforce.ibmcloud.com/vulnerabilities/61421https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7169http://secunia.com/advisories/41096http://secunia.com/advisories/41154http://secunia.com/secunia_research/2010-5/http://service.real.com/realplayer/security/08262010_player/en/http://www.securitytracker.com/id?1024370http://www.vupen.com/english/advisories/2010/2216https://exchange.xforce.ibmcloud.com/vulnerabilities/61421https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7169
2010-08-30
Published