Unrated severityNVD Advisory· Published Feb 18, 2010· Updated Jun 16, 2026
CVE-2010-0417
CVE-2010-0417
Description
Buffer overflow in common/util/rlstate.cpp in Helix Player 1.0.6 and RealPlayer allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a RuleBook structure with a large number of rule-separator characters that trigger heap memory corruption.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- cpe:2.3:a:realnetworks:helix_player:1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:realnetworks:realplayer:*:*:*:*:*:*:*:*
- (no CPE)
- Range: <= 1.0.6
Patches
Vulnerability mechanics
References
6- lists.helixcommunity.org/pipermail/common-cvs/2008-January/015484.htmlnvd
- secunia.com/advisories/38450nvd
- www.redhat.com/support/errata/RHSA-2010-0094.htmlnvd
- bugzilla.redhat.com/show_bug.cginvd
- helixcommunity.org/viewcvs/common/util/rlstate.cppnvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11364nvd
News mentions
0No linked articles in our index yet.