CVE Vulnerability

CVE-2008-0098

Buffer overflow in RealPlayer 11 build 6.0.14.748 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: As of 20080103, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

10 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://lists.immunitysec.com/pipermail/dailydave/2008-January/004811.html
http://gleg.net/realplayer11.html
http://www.us-cert.gov/current/index.html#public_exploit_code_for_realplayer
http://www.securityfocus.com/bid/27091
http://secunia.com/advisories/28276 Vendor Advisory
http://www.securitytracker.com/id?1019153
http://www.vupen.com/english/advisories/2008/0016
Configurations

Configuration 1

cpe:2.3:a:realnetworks:realplayer:11_build_6.0.14.748:*:*:*:*:*:*:*
Information

Published : 2008-01-08 02:46

Updated : 2018-10-30 04:25

NVD link : CVE-2008-0098

Mitre link : CVE-2008-0098

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer