← Back to CVEs

CVE-2002-1014

N/A

Description

Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long value in a CONTROLnImage argument, such as CONTROL1Image.

CVE Details

CVSS v3.1 ScoreN/A

Published10/4/2002

Last Modified4/16/2026

Sourcenvd

Honeypot Sightings0

Affected Products

realnetworks:realjukebox_2realnetworks:realjukebox_2_plusrealnetworks:realone_player

References

http://archives.neohapsis.com/archives/bugtraq/2002-07/0127.html(cve@mitre.org)

http://service.real.com/help/faq/security/bufferoverrun07092002.html(cve@mitre.org)

http://www.iss.net/security_center/static/9538.php(cve@mitre.org)

http://www.kb.cert.org/vuls/id/843667(cve@mitre.org)

http://www.securityfocus.com/bid/5217(cve@mitre.org)

http://archives.neohapsis.com/archives/bugtraq/2002-07/0127.html(af854a3a-2127-422b-91ae-364da2661108)

http://service.real.com/help/faq/security/bufferoverrun07092002.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.iss.net/security_center/static/9538.php(af854a3a-2127-422b-91ae-364da2661108)

http://www.kb.cert.org/vuls/id/843667(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/5217(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.