Back to search
CVE-2005-2629
Published: Nov 18, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Integer overflow in RealNetworks RealPlayer 8, 10, and 10.5, RealOne Player 1 and 2, and Helix Player 10.0.0 allows remote attackers to execute arbitrary code via an .rm movie file with a large value in the length field of the first data packet, which leads to a stack-based buffer overflow, a different vulnerability than CVE-2004-1481.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
169
third-party-advisory
x_refsource_SREASON
1015186
vdb-entry
x_refsource_SECTRACK
AD20051110a
third-party-advisory
x_refsource_EEYE
1015184
vdb-entry
x_refsource_SECTRACK
17559
third-party-advisory
x_refsource_SECUNIA
EEYEB20050510
third-party-advisory
x_refsource_EEYE
17514
third-party-advisory
x_refsource_SECUNIA
15381
vdb-entry
x_refsource_BID
http://service.real.com/help/faq/security/051110_player/EN/
x_refsource_CONFIRM
DSA-915
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:9550
vdb-entry
signature
x_refsource_OVAL
17860
third-party-advisory
x_refsource_SECUNIA
1015185
vdb-entry
x_refsource_SECTRACK
realplayer-rm-datapacket-bo(23024)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now