CVE-2011-10016

Real Networks Netzip Classic version 7.5.1.86 is vulnerable to a stack-based buffer overflow when parsing a specially crafted ZIP archive. The vulnerability is triggered when the application attempts to process a file name within the archive that exceeds the expected buffer size. Exploitation allows arbitrary code execution under the context of the victim user when the ZIP file is opened.

CVSS

No CVSS.

References

Link	Resource
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/real_networks_netzip_bof.rb
https://www.exploit-db.com/exploits/16083
https://www.exploit-db.com/exploits/17985
https://www.softpedia.com/get/Compression-tools/NetZip-Classic.shtml
https://www.vulncheck.com/advisories/real-networks-netzip-classic-file-parsing-buffer-overflow

Configurations

No configuration.

History

14 Aug 2025, 13:11

Type	Values Removed	Values Added
Summary		(es) Real Networks Netzip Classic versión 7.5.1.86 es vulnerable a un desbordamiento de búfer basado en pila al analizar un archivo ZIP especialmente manipulado. La vulnerabilidad se activa cuando la aplicación intenta procesar un nombre de archivo dentro del archivo que excede el tamaño de búfer esperado. La explotación permite la ejecución de código arbitrario en el contexto del usuario víctima al abrir el archivo ZIP.

13 Aug 2025, 21:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-13 21:15

Updated : 2025-08-14 13:11

NVD link : CVE-2011-10016

Mitre link : CVE-2011-10016

CVE.ORG link : CVE-2011-10016

JSON object : View

Products Affected

No product.

CWE

CWE-121

Stack-based Buffer Overflow

{"id": "CVE-2011-10016", "cveTags": [{"tags": ["unsupported-when-assigned"], "sourceIdentifier": "disclosure@vulncheck.com"}], "metrics": {"cvssMetricV40": [{"type": "Secondary", "source": "disclosure@vulncheck.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 9.3, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "CRITICAL", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "ACTIVE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-08-13T21:15:29.067", "references": [{"url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/real_networks_netzip_bof.rb", "source": "disclosure@vulncheck.com"}, {"url": "https://www.exploit-db.com/exploits/16083", "source": "disclosure@vulncheck.com"}, {"url": "https://www.exploit-db.com/exploits/17985", "source": "disclosure@vulncheck.com"}, {"url": "https://www.softpedia.com/get/Compression-tools/NetZip-Classic.shtml", "source": "disclosure@vulncheck.com"}, {"url": "https://www.vulncheck.com/advisories/real-networks-netzip-classic-file-parsing-buffer-overflow", "source": "disclosure@vulncheck.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "disclosure@vulncheck.com", "description": [{"lang": "en", "value": "CWE-121"}]}], "descriptions": [{"lang": "en", "value": "Real Networks Netzip Classic version 7.5.1.86 is vulnerable to a stack-based buffer overflow when parsing a specially crafted ZIP archive. The vulnerability is triggered when the application attempts to process a file name within the archive that exceeds the expected buffer size. Exploitation allows arbitrary code execution under the context of the victim user when the ZIP file is opened."}, {"lang": "es", "value": "Real Networks Netzip Classic versi\u00f3n 7.5.1.86 es vulnerable a un desbordamiento de b\u00fafer basado en pila al analizar un archivo ZIP especialmente manipulado. La vulnerabilidad se activa cuando la aplicaci\u00f3n intenta procesar un nombre de archivo dentro del archivo que excede el tama\u00f1o de b\u00fafer esperado. La explotaci\u00f3n permite la ejecuci\u00f3n de c\u00f3digo arbitrario en el contexto del usuario v\u00edctima al abrir el archivo ZIP."}], "lastModified": "2025-08-14T13:11:53.633", "sourceIdentifier": "disclosure@vulncheck.com"}