CVE

Id
66824  
CVE No.
CVE-2013-6877  
Status
Candidate  
Description
Heap-based buffer overflow in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allows remote attackers to execute arbitrary code via a long string in the TRACKID element of an RMP file, a different vulnerability than CVE-2013-7260.  
Phase
Assigned (20131126)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
647044 66824 CVE-2013-6877 BUGTRAQ:20131217 CORE-2013-0903 - RealPlayer Heap-based Buffer Overflow Vulnerability  View
647045 66824 CVE-2013-6877 URL:http://archives.neohapsis.com/archives/bugtraq/2013-12/0104.html  View
647046 66824 CVE-2013-6877 MISC:http://www.coresecurity.com/advisories/realplayer-heap-based-buffer-overflow-vulnerability  View
647047 66824 CVE-2013-6877 MISC:http://packetstormsecurity.com/files/124535  View
647048 66824 CVE-2013-6877 CONFIRM:http://service.real.com/realplayer/security/12202013_player/en/  View
647049 66824 CVE-2013-6877 BID:64398  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
24028 JVNDB-2013-005603 CRU Ditto Forensic FieldStation のファームウェアにおけるクロスサイトスクリプティングの脆弱性 CRU Ditto Forensic FieldStation のファームウェアには、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2013-6882 66824 4.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005603.html  View