← Voltar para CVEs
CVE-2012-4987
N/ADescricao
Stack-based buffer overflow in RealNetworks RealPlayer 15.0.5.109 allows user-assisted remote attackers to execute arbitrary code via a crafted ZIP file that triggers incorrect processing of long pathnames by the Watch Folders feature.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado11/4/2012
Ultima modificacao4/11/2025
Fontenvd
Avistamentos honeypot0
Produtos afetados
realnetworks:realplayer
Fraquezas (CWE)
CWE-119
Referencias
http://osvdb.org/86721(cve@mitre.org)
http://packetstormsecurity.org/files/117691/Realplayer-Watchfolders-Long-Filepath-Overflow.html(cve@mitre.org)
http://seclists.org/fulldisclosure/2012/Oct/189(cve@mitre.org)
http://www.securityfocus.com/bid/56324(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/79663(cve@mitre.org)
http://osvdb.org/86721(af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.org/files/117691/Realplayer-Watchfolders-Long-Filepath-Overflow.html(af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2012/Oct/189(af854a3a-2127-422b-91ae-364da2661108)
http://www.reactionpenetrationtesting.co.uk/realplayer-watchfolders.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/56324(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/79663(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.