Realnetworks

Realplayer

170 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2010-0125

  • EPSS 0.4%
  • Published 14.12.2010 16:00:02
  • Last modified 11.04.2025 00:51:21

RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, and Mac RealPlayer 11.0 through 12.0.0.1444 do not properly parse spectral data in AAC files, which has unspecified impact and remote attack vect...

5

CVE-2010-2579

  • EPSS 0.24%
  • Published 14.12.2010 16:00:02
  • Last modified 11.04.2025 00:51:21

The cook codec in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, Mac RealPlayer 11.0 through 11.1, and Linux RealPlayer 11.0.2.1744 does not properly initialize the number of channels, which a...

9.3

CVE-2010-2997

  • EPSS 3.73%
  • Published 14.12.2010 16:00:02
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.0.6 and other versions, allows remote attackers to ...

9.3

CVE-2010-2999

  • EPSS 2.47%
  • Published 14.12.2010 16:00:02
  • Last modified 11.04.2025 00:51:21

Integer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, and Linux RealPlayer 11.0.2.1744 allows remote attackers to execute arbitrary code or cause a denial of service (heap me...

9.3

CVE-2010-2578

  • EPSS 1.23%
  • Published 19.10.2010 00:00:01
  • Last modified 11.04.2025 00:51:21

Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, and RealPlayer Enterprise 2.1.2 allows remote attackers to have an unspecified impact via a crafted QCP file.

9.3

CVE-2010-2998

  • EPSS 1.63%
  • Published 19.10.2010 00:00:01
  • Last modified 11.04.2025 00:51:21

Array index error in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.0.1 allows remote attackers to execute arbitrary code via malformed sample data in a RealMedia .IVR file, related to a "malformed IVR pointer index" issue.

9.3

CVE-2010-3747

  • EPSS 68.5%
  • Published 19.10.2010 00:00:01
  • Last modified 11.04.2025 00:51:21

An ActiveX control in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, and RealPlayer Enterprise 2.1.2 does not properly initialize an unspecified object component during parsing of a CDDA URI, which allows remote attackers...

10

CVE-2010-3748

  • EPSS 1.46%
  • Published 19.10.2010 00:00:01
  • Last modified 11.04.2025 00:51:21

Stack-based buffer overflow in the RichFX component in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, and RealPlayer Enterprise 2.1.2 allows remote attackers to have an unspecified impact via unknown vectors.

9.3

CVE-2010-3749

  • EPSS 5.82%
  • Published 19.10.2010 00:00:01
  • Last modified 11.04.2025 00:51:21

The browser-plugin implementation in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1 allows remote attackers to arguments to the RecordClip method, which allows remote attackers to download an arbitrary program onto a clie...

9.3

CVE-2010-3750

  • EPSS 1.52%
  • Published 19.10.2010 00:00:01
  • Last modified 11.04.2025 00:51:21

rjrmrpln.dll in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, and RealPlayer Enterprise 2.1.2 does not properly validate file contents that are used during interaction with a heap buffer, which allows remote attackers to...