what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed

Files

Zero Day Initiative Advisory 10-210
Posted Oct 16, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-210 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists during the parsing of long CDDA URIs due to a failure to initialize a particular component of an object. The application will later call a method in the object leading to the uninitialized pointer being called. If an attacker can place data they control at the uninitialized location, the application will call malicious pointer which can lead to code execution under the context of the application.

tags | advisory, remote, arbitrary, code execution
advisories | CVE-2010-3747
MD5 | c9d2ebf6bb11a3c7cd3f3c1df11a5a48
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Twitter Says Olympics, IOC Accounts Hacked
Posted Feb 17, 2020

tags | headline, hacker, twitter
Police Force Denies Creating Child Hacker Poster
Posted Feb 17, 2020

tags | headline, hacker, government, britain
Hacking Brain-Computer Interfaces
Posted Feb 17, 2020

tags | headline, hacker, science
Signal Is Finally Bringing Its Secure Messaging To The Masses
Posted Feb 17, 2020

tags | headline, privacy, phone, cryptography
Privacy Experts Skeptical Of Proposed Data Protection Agency
Posted Feb 14, 2020

tags | headline, government, privacy, usa
Black Hat Asia 2020 Postponed Due To Coronavirus Concerns
Posted Feb 14, 2020

tags | headline, china, conference
Nedbank Says 1.7 Million Affected By Breach
Posted Feb 14, 2020

tags | headline, hacker, privacy, bank, cybercrime, data loss, fraud
Facebook Removes Foreign Interference Operations From Iran And Russia
Posted Feb 14, 2020

tags | headline, government, privacy, russia, data loss, fraud, cyberwar, facebook, iran
Critical XSS Vulnerability Patched In WordPress Plugin GDPR Cookie Consent
Posted Feb 13, 2020

tags | headline, flaw, wordpress
Czechs Investigating Avast Over Data Collection Policies
Posted Feb 13, 2020

tags | headline, government, privacy, virus, data loss
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close