Unrated severityNVD Advisory· Published Nov 2, 2010· Updated Apr 29, 2026

CVE-2010-4142

Description

Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build 6.1.8.10 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) SCPC_INITIALIZE, (2) SCPC_INITIALIZE_RF, or (3) SCPC_TXTEVENT packet. NOTE: it was later reported that 1.06 is also affected by one of these requests.

Affected products

Realflex/Realwin2 versions
cpe:2.3:a:realflex:realwin:1.06:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:realflex:realwin:1.06:*:*:*:*:*:*:*
- cpe:2.3:a:realflex:realwin:2.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

aluigi.org/adv/realwin_1-adv.txtnvdExploit
www.exploit-db.com/exploits/15259nvdExploit
www.exploit-db.com/exploits/15337nvdExploit
www.securityfocus.com/bid/44150nvdExploit
secunia.com/advisories/41849nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.039
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000