Description
Buffer overflow in Real Networks RealPlayer 8.0 and earlier allows remote attackers to execute arbitrary code via a header length value that exceeds the actual length of the header.
Products
- RealNetworks RealOne Player
- RealNetworks RealOne Player
- RealNetworks Realone Player 1.0
- RealNetworks Realone Player 2.0
- RealNetworks Realone Player 6.0.10.505
- RealNetworks Realone Player 6.0.11.818
- RealNetworks Realone Player 6.0.11.830
- RealNetworks Realone Player 6.0.11.841
- RealNetworks Realone Player 6.0.11.853
- RealNetworks Realone Player 6.0.11.868
- RealNetworks Realone Player 8.0
- RealNetworks RealPlayer Intranet
- RealNetworks RealPlayer Intranet 7.0
- RealNetworks RealPlayer Intranet 8.0
Questions to Ask Vendors
- Can you confirm whether your systems are affected by CVE-2002-0207, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2002-0207 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions
- Check out the advisory links provided below.
References