Vulnerability CVE-2009-4246

Vulnerability CVE-2009-4246

Published: 2010-01-25 Modified: 2012-02-13

Description:

	Topic	Author	Date
High	RealNetworks RealPlayer Skin Parsing Remote Code Execution Vuln	ZDI	27.01.2010

Type:

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS Base Score	Impact Subscore	Exploitability Subscore
9.3/10	10/10	8.6/10

Affected software
Realnetworks -> Helix player
Realnetworks -> Realplayer
Realnetworks -> Realplayer enterprise
Realnetworks -> Realplayer sp

http://securitytracker.com/id?1023489

http://service.real.com/realplayer/security/01192010_player/en/

http://www.securityfocus.com/archive/1/509104/100/0/threaded

http://www.securityfocus.com/bid/37880

http://www.vupen.com/english/advisories/2010/0178

http://www.zerodayinitiative.com/advisories/ZDI-10-010/

https://exchange.xforce.ibmcloud.com/vulnerabilities/55799