CVE-2010-2585

RealPage Module Upload ActiveX Control - Buffer Overflow via DestURL or SourceFile Property

Title source: llm
STIX 2.1

Description

Multiple buffer overflows in the RealPage Module Upload ActiveX control in Realpage.dll 1.0.0.9 in RealPage Module ActiveX Controls allow remote attackers to execute arbitrary code via a long (1) DestURL or (2) SourceFile property value.

References (4)

Core 4
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/41392
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/68814
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/44302
Vendor Advisory x_refsource_misc
http://secunia.com/secunia_research/2010-119/

Scores

EPSS 0.0497
EPSS Percentile 91.2%

Details

CWE
CWE-119
Status published
Products (1)
realpage/module_activex_control 1.0.0.9
Published Oct 26, 2010
Tracked Since Feb 18, 2026