CVE-2002-1014

Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long value in a CONTROLnImage argument, such as CONTROL1Image.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:realnetworks:realjukebox_2:1.0.2.340:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realjukebox_2:1.0.2.379:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realjukebox_2_plus:1.0.2.340:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realjukebox_2_plus:1.0.2.379:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realone_player:6.0.10.505:gold:*:*:*:*:*:*

History

20 Nov 2024, 23:40

Type Values Removed Values Added
References () http://archives.neohapsis.com/archives/bugtraq/2002-07/0127.html - () http://archives.neohapsis.com/archives/bugtraq/2002-07/0127.html -
References () http://service.real.com/help/faq/security/bufferoverrun07092002.html - () http://service.real.com/help/faq/security/bufferoverrun07092002.html -
References () http://www.iss.net/security_center/static/9538.php - Vendor Advisory () http://www.iss.net/security_center/static/9538.php - Vendor Advisory
References () http://www.kb.cert.org/vuls/id/843667 - US Government Resource () http://www.kb.cert.org/vuls/id/843667 - US Government Resource
References () http://www.securityfocus.com/bid/5217 - Patch, Vendor Advisory () http://www.securityfocus.com/bid/5217 - Patch, Vendor Advisory

Information

Published : 2002-10-04 04:00

Updated : 2024-11-20 23:40


NVD link : CVE-2002-1014

Mitre link : CVE-2002-1014

CVE.ORG link : CVE-2002-1014


JSON object : View

Products Affected

realnetworks

  • realjukebox_2
  • realone_player
  • realjukebox_2_plus