Critical severityNVD Advisory· Published Aug 13, 2025· Updated Apr 15, 2026

CVE-2011-10016

Description

Real Networks Netzip Classic version 7.5.1.86 is vulnerable to a stack-based buffer overflow when parsing a specially crafted ZIP archive. The vulnerability is triggered when the application attempts to process a file name within the archive that exceeds the expected buffer size. Exploitation allows arbitrary code execution under the context of the victim user when the ZIP file is opened.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/real_networks_netzip_bof.rbnvd
www.exploit-db.com/exploits/16083nvd
www.exploit-db.com/exploits/17985nvd
www.softpedia.com/get/Compression-tools/NetZip-Classic.shtmlnvd
www.vulncheck.com/advisories/real-networks-netzip-classic-file-parsing-buffer-overflownvd

News mentions

No linked articles in our index yet.

cvss	0.585
epss	0.008
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000