CVE-2006-1370: Buffer Overflow
First published: Thu Mar 23 2006(Updated: )
Buffer overflow in RealNetworks RealPlayer 10.5 6.0.12.1040 through 6.0.12.1348, RealPlayer 10, RealOne Player v2, RealOne Player v1, RealPlayer 8, and RealPlayer Enterprise before 20060322 allows remote attackers to have an unknown impact via a malicious Mimio boardCast (mbc) file.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| RealPlayer | =10.5_6.0.12.1069 | |
| RealPlayer | =10.0 | |
| RealNetworks RealPlayer | =2.0 | |
| RealPlayer | =10.5_6.0.12.1053 | |
| RealPlayer | =8.0 | |
| RealPlayer | =10.5_6.0.12.1348 | |
| RealNetworks RealPlayer | =1.0 | |
| RealPlayer | =10.5_6.0.12.1056 | |
| RealPlayer | =10.5_6.0.12.1235 | |
| RealPlayer | =10.5_6.0.12.1059 | |
| RealPlayer | =10.5_6.0.12.1040 | |
| RealPlayer |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/advisories/19358
- http://securitytracker.com/id?1015810
- http://www.kb.cert.org/vuls/id/451556
- http://www.securityfocus.com/bid/17202
- http://www.service.real.com/realplayer/security/03162006_player/en/
- http://www.vupen.com/english/advisories/2006/1057
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25411
Frequently Asked Questions
What is the severity of CVE-2006-1370?
CVE-2006-1370 is classified as a high severity vulnerability due to the potential for buffer overflow leading to remote code execution.
How do I fix CVE-2006-1370?
To fix CVE-2006-1370, you should update to a patched version of RealPlayer released after March 22, 2006.
What software is affected by CVE-2006-1370?
CVE-2006-1370 affects multiple versions of RealPlayer, including versions 10.5 and below, RealOne Player, and RealPlayer 8.
Can CVE-2006-1370 be exploited remotely?
Yes, CVE-2006-1370 can be exploited remotely through a malicious Mimio boardCast (mbc) file.
What impact can CVE-2006-1370 have on my system?
The impact of CVE-2006-1370 can include unauthorized remote execution of code, potentially compromising system integrity.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/severity
- agent/remedy
- agent/author
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- vendor/realnetworks
- product/realplayer
- canonical/realnetworks realplayer
- product/realone player
- canonical/realnetworks realone player
- agent/software-canonical-lookup-request
- collector/nvd-index
- canonical/realplayer
- version/realplayer/10.5_6.0.12.1069
- version/realplayer/10.0
- version/realnetworks realplayer/2.0
- version/realplayer/10.5_6.0.12.1053
- version/realplayer/8.0
- version/realplayer/10.5_6.0.12.1348
- version/realnetworks realplayer/1.0
- version/realplayer/10.5_6.0.12.1056
- version/realplayer/10.5_6.0.12.1235
- version/realplayer/10.5_6.0.12.1059
- version/realplayer/10.5_6.0.12.1040