exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Zero Day Initiative Advisory 10-05
Posted Jan 22, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-05 - This vulnerability allows remote attackers to execute code on vulnerable installations of RealPlayer. User interaction is required in that a user must open a malicious file or visit a malicious web site. The specific flaw exists during the parsing of files with improperly defined ASMRuleBook structures. A controllable memory allocation allows for an attacker to corrupt heap memory. Attacker controlled data from the corrupt heap is later used as an object pointer which can be leveraged to execute arbitrary code in the context of the currently logged in user.

tags | advisory, remote, web, arbitrary
advisories | CVE-2009-4241
MD5 | 8d4967e6ceef4fa02e095d40fa8fd140
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Apple Drops Hong Kong Police Tracking App Used By Protesters
Posted Oct 10, 2019

tags | headline, government, phone, china, cyberwar, apple
Forum Cracks The Vintage Passwords Of Ken Thompson And Other Unix Pioneers
Posted Oct 10, 2019

tags | headline, password
Ransomware Gang Uses iTunes Zero-Day
Posted Oct 10, 2019

tags | headline, hacker, virus, fraud, flaw, patch, apple, zero day
Human Rights Activist Allegedly Targeted With NSO Malware
Posted Oct 10, 2019

tags | headline, government, privacy, cyberwar, spyware
Court Finds FBI Use Of NSA Database Violated Americans' 4th Amendment Rights
Posted Oct 9, 2019

tags | headline, government, privacy, usa, data loss, spyware, fbi, nsa
Cookie Monster Eats Data From Sesame Street Store
Posted Oct 9, 2019

tags | headline, hacker, cybercrime, data loss, fraud, backdoor
iOS 13 Tells You When Apps Are Secretly Tracking You
Posted Oct 9, 2019

tags | headline, privacy, phone, spyware, apple
Twitter Sold User Security Information To Advertisers
Posted Oct 9, 2019

tags | headline, privacy, data loss, twitter
Trump's Syria Move Blindsides National Security Leaders
Posted Oct 8, 2019

tags | headline, government, usa, turkey, terror, syria
D-Link Gear Open To Remote Takeover Will Remain Unpatched
Posted Oct 8, 2019

tags | headline, flaw, patch
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close