Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2009-4242
HistoryJan 25, 2010 - 12:00 a.m.

CVE-2009-4242

2010-01-2500:00:00
ubuntu.com
ubuntu.com
10

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.508

Percentile

97.6%

JSON

Heap-based buffer overflow in the CGIFCodec::GetPacketBuffer function in
datatype/image/gif/common/gifcodec.cpp in RealNetworks RealPlayer 10;
RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741; RealPlayer 11 11.0.0
through 11.0.4; RealPlayer Enterprise; Mac RealPlayer 10, 10.1, and 11.0;
Linux RealPlayer 10; and Helix Player 10.x allows remote attackers to
execute arbitrary code via a GIF file with crafted chunk sizes that trigger
improper memory allocation.

Related

prion 1
cve 1
nvd 1
securityvulns 2
cvelist 1
zdi 1
openvas 8
nessus 7
centos 1
oraclelinux 1
redhat 1
seebug 1
prion
prion
Heap overflow
2010-01-25 19:30:00
cve
cve
CVE-2009-4242
2010-01-25 19:30:01
nvd
nvd
CVE-2009-4242
2010-01-25 19:30:01
securityvulns
securityvulns
ZDI-10-006: RealNetworks RealPlayer GIF Handling Remote Code Execution Vulnerability
2010-01-21 00:00:00
RealNetworks RealPlayer multiple security vulnerabilities
2010-02-02 00:00:00
cvelist
cvelist
CVE-2009-4242
2010-01-25 19:00:00
zdi
zdi
RealNetworks RealPlayer GIF Handling Remote Code Execution Vulnerability
2010-01-21 00:00:00
openvas
openvas
CentOS Update for HelixPlayer CESA-2010:0094 centos4 i386
2010-02-15 00:00:00
CentOS Update for HelixPlayer CESA-2010:0094 centos4 i386
2010-02-15 00:00:00
RedHat Update for HelixPlayer RHSA-2010:0094-02
2010-02-15 00:00:00
nessus
nessus
Oracle Linux 4 : HelixPlayer (ELSA-2010-0094)
2013-07-12 00:00:00
CentOS 4 : HelixPlayer (CESA-2010:0094)
2010-02-10 00:00:00
SuSE 10 Security Update : Realplayer and banshee (ZYPP Patch Number 7122)
2011-01-27 00:00:00
centos
centos
HelixPlayer security update
2010-02-09 17:22:40
oraclelinux
oraclelinux
HelixPlayer security update
2010-02-09 00:00:00
redhat
redhat
(RHSA-2010:0094) Critical: HelixPlayer security update
2010-02-09 00:00:00
seebug
seebug
RealPlayer皮肤和媒体文件解析多个缓冲区溢出漏洞
2010-01-22 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.508

Percentile

97.6%

JSON
Related for UB:CVE-2009-4242
prion1cve1nvd1securityvulns2cvelist1zdi1openvas8nessus7centos1oraclelinux1redhat1seebug1