CVE-2009-0375 - Vulnerability Details - OpenCVE

Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Realnetworks	Realplayer

Configuration 1 [-]

cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://secunia.com/advisories/33810
http://secunia.com/advisories/38218
http://service.real.com/realplayer/security/01192010_player/en/
http://www.fortiguardcenter.com/advisory/FGA-2009-04.html
http://www.securityfocus.com/archive/1/500722/100/0/threaded
http://www.securityfocus.com/bid/33652
http://www.vupen.com/english/advisories/2010/0178
https://exchange.xforce.ibmcloud.com/vulnerabilities/48567
https://www.cve.org/CVERecord?id=CVE-2009-0375

History

Wed, 28 May 2025 14:45:00 +0000

Type	Values Removed	Values Added
References		https://www.cve.org/CVERecord?id=CVE-2009-0375

Thu, 22 May 2025 00:45:00 +0000

Type	Values Removed	Values Added
References	https://nvd.nist.gov/vuln/detail/CVE-2009-0375 https://www.cve.org/CVERecord?id=CVE-2009-0375

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-02-08T21:00:00

Updated: 2024-08-07T04:31:26.226Z

Reserved: 2009-01-30T00:00:00

Link: CVE-2009-0375

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2009-02-08T21:30:09.797

Modified: 2025-04-09T00:30:58.490

Link: CVE-2009-0375

Redhat

Severity : Critical

Publid Date: 2010-01-19T00:00:00Z

Links: CVE-2009-0375 - Bugzilla

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-02-05T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2010-0178", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2010/0178"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://service.real.com/realplayer/security/01192010_player/en/"}, {"tags": ["x_refsource_MISC"], "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"}, {"name": "33810", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/33810"}, {"name": "realplayer-ivr-bo(48567)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"}, {"name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"}, {"name": "38218", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/38218"}, {"name": "33652", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/33652"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-0375", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2010-0178", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2010/0178"}, {"name": "http://service.real.com/realplayer/security/01192010_player/en/", "refsource": "CONFIRM", "url": "http://service.real.com/realplayer/security/01192010_player/en/"}, {"name": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html", "refsource": "MISC", "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"}, {"name": "33810", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33810"}, {"name": "realplayer-ivr-bo(48567)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"}, {"name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"}, {"name": "38218", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/38218"}, {"name": "33652", "refsource": "BID", "url": "http://www.securityfocus.com/bid/33652"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T04:31:26.226Z"}, "title": "CVE Program Container", "references": [{"name": "ADV-2010-0178", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2010/0178"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://service.real.com/realplayer/security/01192010_player/en/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"}, {"name": "33810", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/33810"}, {"name": "realplayer-ivr-bo(48567)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"}, {"name": "20090206 RealNetworks RealPlayer IVR File Processing Multiple Code Execute Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"}, {"name": "38218", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/38218"}, {"name": "33652", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/33652"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-0375", "datePublished": "2009-02-08T21:00:00", "dateReserved": "2009-01-30T00:00:00", "dateUpdated": "2024-08-07T04:31:26.226Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*", "matchCriteriaId": "72A94395-4F1A-4310-85A8-F46A76EE3A12", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Buffer overflow in a DLL file in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to execute arbitrary code via a crafted Internet Video Recording (IVR) file with a filename length field containing a large integer, which triggers overwrite of an arbitrary memory location with a 0x00 byte value, related to use of RealPlayer through a Windows Explorer plugin."}, {"lang": "es", "value": "Archivo dll en RealNetworks RealPlayer 11, permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un archivo Internet Video Recording (IVR) manipulado con un campo con un nombre de archivo largo que contiene un entero largo, lo que provoca la sobreescritura de una regi\u00f3n de memoria con un valor en bytes de 0x00, relacionado con el uso de RealPlayer a trav\u00e9s del componente de Windows Explorer."}], "evaluatorComment": "Per http://www.fortiguardcenter.com/advisory/FGA-2009-04.html:\r\n\r\n\"It should be noted that the victim does not necessarily have to open the malicious file for exploitation to occur: the vulnerabilities lie in a DLL that is also used as a plugin for the Windows Explorer shell. A successful attack could take place by merely previewing the IVR file through Windows Explorer. \"", "id": "CVE-2009-0375", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2009-02-08T21:30:09.797", "references": [{"source": "cve@mitre.org", "url": "http://secunia.com/advisories/33810"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/38218"}, {"source": "cve@mitre.org", "url": "http://service.real.com/realplayer/security/01192010_player/en/"}, {"source": "cve@mitre.org", "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/33652"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2010/0178"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/33810"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/38218"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://service.real.com/realplayer/security/01192010_player/en/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.fortiguardcenter.com/advisory/FGA-2009-04.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/500722/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/33652"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2010/0178"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48567"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}