CVE-2011-10016

CRITICAL

Real Networks Netzip Classic 7.5.1.86 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2011-10016. PoCs published by Metasploit, C4SS!0 G0M3S, including Metasploit module exploits/windows/fileformat/real_networks_netzip_bof.

AI-analyzed exploit summary This exploit targets a stack-based buffer overflow in Real Networks Netzip Classic 7.5.1.86 by crafting a malicious ZIP file that triggers arbitrary code execution when parsed. The payload is encoded and delivered via a specially formatted ZIP archive.

Description

Real Networks Netzip Classic version 7.5.1.86 is vulnerable to a stack-based buffer overflow when parsing a specially crafted ZIP archive. The vulnerability is triggered when the application attempts to process a file name within the archive that exceeds the expected buffer size. Exploitation allows arbitrary code execution under the context of the victim user when the ZIP file is opened.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/17985

This exploit targets a stack-based buffer overflow in Real Networks Netzip Classic 7.5.1.86 by crafting a malicious ZIP file that triggers arbitrary code execution when parsed. The payload is encoded and delivered via a specially formatted ZIP archive.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Real Networks Netzip Classic 7.5.1.86
No auth needed
Prerequisites: Victim must open the malicious ZIP file with Netzip Classic
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by C4SS!0 G0M3S · rubylocalwindows
https://www.exploit-db.com/exploits/16083

This exploit demonstrates a buffer overflow vulnerability in NetZip Classic 7.5.1.86 by crafting a malicious ZIP file that triggers an SEH overwrite, leading to arbitrary code execution (e.g., launching calc.exe). The payload includes a structured ZIP header, a buffer overflow with SEH manipulation, and shellcode.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: NetZip Classic 7.5.1.86
No auth needed
Prerequisites: Victim must open the malicious ZIP file with NetZip Classic 7.5.1.86
devstral-2 · analyzed Feb 18, 2026 Full analysis →
metasploit WORKING POC GOOD
by C4SS!0 G0M3S · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/real_networks_netzip_bof.rb

This Metasploit module exploits a stack-based buffer overflow in Real Networks Netzip Classic 7.5.1.86 by crafting a malicious ZIP file that triggers arbitrary code execution when opened by the victim.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Real Networks Netzip Classic 7.5.1.86
No auth needed
Prerequisites: Victim must open the malicious ZIP file with Netzip Classic
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Scores

CVSS v4 9.3
EPSS 0.0040
EPSS Percentile 31.4%
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-121
Status published
Products (1)
RealNetworks Inc./Netzip Classic 7.5.1.86
Published Aug 13, 2025
Tracked Since Feb 18, 2026