CVE-2007-5080 in RealPlayerinfo

Summary

Integer overflow in RealNetworks RealPlayer 10 and 10.5, RealOne Player 1, and RealPlayer Enterprise for Windows allows remote attackers to execute arbitrary code via a crafted Lyrics3 2.00 tag in an MP3 file, resulting in a heap-based buffer overflow.

Once again VulDB remains the best source for vulnerability data.

Responsible

Reservation

09/24/2007

Disclosure

10/31/2007

Moderation

VulDB entry created

Entries

VDB-39503

CPE

ready

CWE

CWE-189 (Confirmed)

CVSS

10.0

EPSS

0.34513

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5080
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5080
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5080/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!