Realnetworks

Realplayer

170 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2010-0125

  • EPSS 0.4%
  • Veröffentlicht 14.12.2010 16:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, and Mac RealPlayer 11.0 through 12.0.0.1444 do not properly parse spectral data in AAC files, which has unspecified impact and remote attack vect...

5

CVE-2010-2579

  • EPSS 0.24%
  • Veröffentlicht 14.12.2010 16:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The cook codec in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, Mac RealPlayer 11.0 through 11.1, and Linux RealPlayer 11.0.2.1744 does not properly initialize the number of channels, which a...

9.3

CVE-2010-2997

  • EPSS 3.73%
  • Veröffentlicht 14.12.2010 16:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.0.6 and other versions, allows remote attackers to ...

9.3

CVE-2010-2999

  • EPSS 2.47%
  • Veröffentlicht 14.12.2010 16:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, and Linux RealPlayer 11.0.2.1744 allows remote attackers to execute arbitrary code or cause a denial of service (heap me...

9.3

CVE-2010-2578

  • EPSS 1.23%
  • Veröffentlicht 19.10.2010 00:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, and RealPlayer Enterprise 2.1.2 allows remote attackers to have an unspecified impact via a crafted QCP file.

9.3

CVE-2010-2998

  • EPSS 1.63%
  • Veröffentlicht 19.10.2010 00:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Array index error in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.0.1 allows remote attackers to execute arbitrary code via malformed sample data in a RealMedia .IVR file, related to a "malformed IVR pointer index" issue.

9.3

CVE-2010-3747

  • EPSS 68.5%
  • Veröffentlicht 19.10.2010 00:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

An ActiveX control in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, and RealPlayer Enterprise 2.1.2 does not properly initialize an unspecified object component during parsing of a CDDA URI, which allows remote attackers...

10

CVE-2010-3748

  • EPSS 1.46%
  • Veröffentlicht 19.10.2010 00:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Stack-based buffer overflow in the RichFX component in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, and RealPlayer Enterprise 2.1.2 allows remote attackers to have an unspecified impact via unknown vectors.

9.3

CVE-2010-3749

  • EPSS 5.82%
  • Veröffentlicht 19.10.2010 00:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The browser-plugin implementation in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1 allows remote attackers to arguments to the RecordClip method, which allows remote attackers to download an arbitrary program onto a clie...

9.3

CVE-2010-3750

  • EPSS 1.52%
  • Veröffentlicht 19.10.2010 00:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

rjrmrpln.dll in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, and RealPlayer Enterprise 2.1.2 does not properly validate file contents that are used during interaction with a heap buffer, which allows remote attackers to...