CVE-2010-2999
published 2010-12-14CVE-2010-2999: Integer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, and Linux RealPlayer…
PriorityP342critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
5.92%
92.3th percentile
Integer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, and Linux RealPlayer 11.0.2.1744 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a malformed MLLT atom in an AAC file.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-m282-r3hp-qhhf: Integer overflow in RealNetworks RealPlayer 11
ghsa_unreviewed·2022-05-17
CVE-2010-2999 [HIGH] GHSA-m282-r3hp-qhhf: Integer overflow in RealNetworks RealPlayer 11
Integer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, and Linux RealPlayer 11.0.2.1744 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a malformed MLLT atom in an AAC file.
Red Hat
Mozilla: XSS via plugins and shadowed window.location object (MFSA 2011-38)
vendor_redhat·2011-09-28·CVSS 4.3
CVE-2011-2999 [MEDIUM] CWE-79 Mozilla: XSS via plugins and shadowed window.location object (MFSA 2011-38)
Mozilla: XSS via plugins and shadowed window.location object (MFSA 2011-38)
Mozilla Firefox before 3.6.23 and 4.x through 5, Thunderbird before 6.0, and SeaMonkey before 2.3 do not properly handle "location" as the name of a frame, which allows remote attackers to bypass the Same Origin Policy via a crafted web site, a different vulnerability than CVE-2010-0170.
Package: firefox (Red Hat Enterprise Linux Extended Update Support 5.7) - Affected
Package: thunderbird (Red Hat Enterprise Linux Extended Update Support 5.7) - Affected
Package: firefox (Red Hat Enterprise Linux Extended Update Support 6.1) - Affected
Package: thunderbird (Red Hat Enterprise Linux Extended Update Support 6.1) - Affected
No detection rules found.
No public exploits indexed.
http://service.real.com/realplayer/security/12102010_player/en/http://www.securitytracker.com/id?1024861http://www.zerodayinitiative.com/advisories/ZDI-10-273http://service.real.com/realplayer/security/12102010_player/en/http://www.securitytracker.com/id?1024861http://www.zerodayinitiative.com/advisories/ZDI-10-273
2010-12-14
Published