NVD

Id
47707  
Name
CVE-2009-0375  
Description
Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2009-02-08  
Modified Date
2010-01-28  
Seq
2009-0375  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
239112 47707 CVE-2009-0375 http://service.real.com/realplayer/security/01192010_player/en/  View
239113 47707 CVE-2009-0375 http://www.fortiguardcenter.com/advisory/FGA-2009-04.html  View
239114 47707 CVE-2009-0375 20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities  View
239115 47707 CVE-2009-0375 33652  View
239116 47707 CVE-2009-0375 ADV-2010-0178  View
239117 47707 CVE-2009-0375 realplayer-ivr-bo(48567)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35267 JVNDB-2010-001047 RealNetworks RealPlayer の DLL ファイルにおける任意のコードを実行される脆弱性 RealNetworks RealPlayer の DLL ファイルには、任意のコードを実行される脆弱性が存在します。 CVE-2009-0375 37806 CVE-2009-0375 47707 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001047.html 2010-01-19 2010-02-17 View