Vulnerability Details : CVE-2002-0207
Buffer overflow in Real Networks RealPlayer 8.0 and earlier allows remote attackers to execute arbitrary code via a header length value that exceeds the actual length of the header.
Vulnerability category: OverflowExecute code
Exploit prediction scoring system (EPSS) score for CVE-2002-0207
Probability of exploitation activity in the next 30 days: 8.88%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 94 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2002-0207
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2002-0207
-
http://online.securityfocus.com/archive/1/252425
Not Applicable;Third Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/3809
Third Party Advisory;VDB Entry
-
http://www.iss.net/security_center/static/7839.php
Broken Link
-
http://archives.neohapsis.com/archives/vuln-dev/2002-q1/0044.html
Vendor Advisory
-
http://sentinelchicken.com/advisories/realplayer/
Vendor Advisory
-
http://online.securityfocus.com/archive/1/252414
Not Applicable;Third Party Advisory;VDB Entry
Products affected by CVE-2002-0207
- cpe:2.3:a:realnetworks:realone_player:*:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:realplayer_intranet:*:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:realplayer_intranet:7.0:*:*:*:*:*:*:*