CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-2054

Unknown vulnerability in RealPlayer 10 and 10.5 (6.0.12.1040-1069) and RealOne Player v1 and v2 allows remote attackers to overwrite arbitrary files or execute arbitrary ActiveX controls via a crafted MP3 file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.4%

CVSS Severity

CVSS v2 Score 5.1

References

http://service.real.com/help/faq/security/050623_player/EN/
http://service.real.com/help/faq/security/050623_player/EN/

Products affected by CVE-2005-2054

Realnetworks » Realone Player » Version: 1.0

cpe:2.3:a:realnetworks:realone_player:1.0
Realnetworks » Realone Player » Version: 2.0

cpe:2.3:a:realnetworks:realone_player:2.0
Realnetworks » Realplayer » Version: 10.0

cpe:2.3:a:realnetworks:realplayer:10.0
Realnetworks » Realplayer » Version: 10.5_6.0.12.1040_1069

cpe:2.3:a:realnetworks:realplayer:10.5_6.0.12.1040_1069

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-2054

Products

Pricing

Contact Us