Realnetworks

Realplayer

170 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2010-3751

  • EPSS 5.83%
  • Published 19.10.2010 00:00:01
  • Last modified 11.04.2025 00:51:21

Multiple heap-based buffer overflows in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 allow remote attackers to execute arbitrary code via a long .smil argument to the (1) tfile, (2) pnmm, or (3) ...

9.3

CVE-2010-2996

  • EPSS 9.25%
  • Published 30.08.2010 20:00:02
  • Last modified 11.04.2025 00:51:21

Array index error in RealNetworks RealPlayer 11.0 through 11.1 on Windows allows remote attackers to execute arbitrary code via a malformed header in a RealMedia .IVR file.

9.3

CVE-2010-3000

  • EPSS 35.76%
  • Published 30.08.2010 20:00:02
  • Last modified 11.04.2025 00:51:21

Multiple integer overflows in the ParseKnownType function in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows allow remote attackers to execute arbitrary code via crafted (1) HX_FLV_META_AMF_TYPE_MIXEDARRAY or ...

9.3

CVE-2010-3001

  • EPSS 1.09%
  • Published 30.08.2010 20:00:02
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in an ActiveX control in the Internet Explorer (IE) plugin in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows has unknown impact and attack vectors related to "multiple browser window...

9.3

CVE-2010-3002

  • EPSS 1.09%
  • Published 30.08.2010 20:00:02
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in RealNetworks RealPlayer 11.0 through 11.1 allows attackers to bypass intended access restrictions on files via unknown vectors.

9.3

CVE-2010-0116

  • EPSS 15.56%
  • Published 30.08.2010 20:00:01
  • Last modified 11.04.2025 00:51:21

Integer overflow in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows might allow remote attackers to execute arbitrary code via a crafted QCP file that triggers a heap-based buffer overflow.

9.3

CVE-2010-0117

  • EPSS 5.25%
  • Published 30.08.2010 20:00:01
  • Last modified 11.04.2025 00:51:21

RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows do not properly handle dimensions during YUV420 transformations, which might allow remote attackers to execute arbitrary code via crafted MP4 content.

9.3

CVE-2010-0120

  • EPSS 15.56%
  • Published 30.08.2010 20:00:01
  • Last modified 11.04.2025 00:51:21

Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows allows remote attackers to execute arbitrary code via large size values in QCP audio content.

7.5

CVE-2010-0416

Exploit
  • EPSS 18.88%
  • Published 18.02.2010 23:30:00
  • Last modified 11.04.2025 00:51:21

Buffer overflow in the Unescape function in common/util/hxurl.cpp and player/hxclientkit/src/CHXClientSink.cpp in Helix Player 1.0.6 and RealPlayer allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary...

5

CVE-2010-0417

  • EPSS 3.21%
  • Published 18.02.2010 23:30:00
  • Last modified 11.04.2025 00:51:21

Buffer overflow in common/util/rlstate.cpp in Helix Player 1.0.6 and RealPlayer allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a RuleBook structure with a large number of rule-separator...