CVE-2011-10016 Information

Aug 14, 2025 cve

Description

Real Networks Netzip Classic version 7.5.1.86 is vulnerable to a stack-based buffer overflow when parsing a specially crafted ZIP archive. The vulnerability is triggered when the application attempts to process a file name within the archive that exceeds the expected buffer size. Exploitation allows arbitrary code execution under the context of the victim user when the ZIP file is opened.

Reference

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/real_networks_netzip_bof.rb https://www.exploit-db.com/exploits/16083 https://www.exploit-db.com/exploits/17985 https://www.softpedia.com/get/Compression-tools/NetZip-Classic.shtml https://www.vulncheck.com/advisories/real-networks-netzip-classic-file-parsing-buffer-overflow

CNNVD-202508-1457 (Published: 2025-08-13)

Share on:

CVE-2011-10016 Information

Description

Reference

Related CNNVD