CVE Vulnerabilities

CVE-2005-2630

Published: Nov 18, 2005 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.1 MEDIUM
AV:N/AC:H/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Heap-based buffer overflow in DUNZIP32.DLL for RealPlayer 8, 10, and 10.5 and RealOne Player 1 and 2 allows remote attackers to execute arbitrary code via a crafted RealPlayer Skin (RJS) file, a different vulnerability than CVE-2004-1094.

Affected Software

Name Vendor Start Version End Version
Realplayer Realnetworks 10.5_6.0.12.1069 10.5_6.0.12.1069
Realplayer Realnetworks 10.0 10.0
Realone_player Realnetworks 2.0 2.0
Realplayer Realnetworks 8.0 8.0
Realplayer Realnetworks 10.5_6.0.12.1053 10.5_6.0.12.1053
Realplayer Realnetworks 10.0 10.0
Realone_player Realnetworks 1.0 1.0
Realplayer Realnetworks 10.5_6.0.12.1056 10.5_6.0.12.1056
Realplayer Realnetworks 10.5_6.0.12.1235 10.5_6.0.12.1235
Realplayer Realnetworks 10.5_6.0.12.1059 10.5_6.0.12.1059
Realplayer Realnetworks 10.5 10.5
Realplayer Realnetworks 10.0 10.0
Realplayer Realnetworks 10.5_6.0.12.1040 10.5_6.0.12.1040
Realplayer Realnetworks * *

References