Kaspersky LabKLA10310KLA10310 ACE vulnerability in RealNetworks
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
99.7%
A buffer overflow was found in RealNetworks products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed SWF file.
Original advisories
Related products
CVE list
CVE-2006-0323 critical
Solution
Update to latest version
Impacts
- ACE
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Affected Products
- RealPlayer for Windows 10.5 versions from 6.0.12.1040 to 6.0.12.1348RealPlayer for Windows 10 all versionsRealOne Player for Windows v2 & v1 all versionsRhapsody for Windows 3 versions from 0.815 to 1.0.269RealPlayer for Mac OS 10 versions from 10.0.0.305 to 10.0.0.331RealOne Player for Mac OS all versionsRealPlayer for Linux versions from 10.0.0.0 to 10.0.0.6Helix Player for Linux versions from 10.0.0.0 to 10.0.0.5
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
99.7%