Filtered by vendor Realnetworks
Subscribe
Total
217 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2012-0942 | 1 Realnetworks | 2 Helix Mobile Server, Helix Server | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in rn5auth.dll in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to execute arbitrary code via crafted authentication credentials. | |||||
CVE-2012-2407 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted AAC file that is not properly handled during stream-data unpacking. | |||||
CVE-2012-5690 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 9.3 HIGH | N/A |
RealNetworks RealPlayer before 16.0.0.282 and RealPlayer SP 1.0 through 1.1.5 allow remote attackers to execute arbitrary code via a RealAudio file that triggers access to an invalid pointer. | |||||
CVE-2012-3234 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 7.5 HIGH | N/A |
RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 do not properly handle codec frame sizes in RealAudio files, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) or possibly have unspecified other impact via a crafted file. | |||||
CVE-2013-4973 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 9.3 HIGH | N/A |
Stack-based buffer overflow in RealNetworks RealPlayer before 16.0.3.51, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted .rmp file. | |||||
CVE-2012-1904 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 4.3 MEDIUM | N/A |
mp4fformat.dll in the QuickTime File Format plugin in RealNetworks RealPlayer 15 and earlier, and RealPlayer SP 1.1.4 Build 12.0.0.756 and earlier, allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP4 file. | |||||
CVE-2012-2411 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 9.3 HIGH | N/A |
Buffer overflow in RealNetworks RealPlayer before 15.0.4.53, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted RealJukebox Media file. | |||||
CVE-2012-4987 | 1 Realnetworks | 1 Realplayer | 2024-02-28 | 6.8 MEDIUM | N/A |
Stack-based buffer overflow in RealNetworks RealPlayer 15.0.5.109 allows user-assisted remote attackers to execute arbitrary code via a crafted ZIP file that triggers incorrect processing of long pathnames by the Watch Folders feature. | |||||
CVE-2013-1750 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 9.3 HIGH | N/A |
Heap-based buffer overflow in RealNetworks RealPlayer before 16.0.1.18 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to execute arbitrary code via a malformed MP4 file. | |||||
CVE-2013-3299 | 1 Realnetworks | 1 Realplayer | 2024-02-28 | 4.3 MEDIUM | N/A |
RealNetworks RealPlayer 16.0.2.32 and earlier allows remote attackers to cause a denial of service (resource consumption or application crash) via an HTML document containing JavaScript code that constructs a long string. | |||||
CVE-2012-2406 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 9.3 HIGH | N/A |
RealNetworks RealPlayer before 15.0.4.53, and RealPlayer SP 1.0 through 1.1.5, does not properly parse ASMRuleBook data in RealMedia files, which allows remote attackers to execute arbitrary code via a crafted file. | |||||
CVE-2012-2409 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted RealMedia file, a different vulnerability than CVE-2012-2410. | |||||
CVE-2012-2267 | 1 Realnetworks | 2 Helix Mobile Server, Helix Server | 2024-02-28 | 5.0 MEDIUM | N/A |
master.exe in the SNMP Master Agent in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to cause a denial of service (daemon crash) by establishing and closing a port-705 TCP connection, a different vulnerability than CVE-2012-1923. | |||||
CVE-2012-2408 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 6.8 MEDIUM | N/A |
The AAC SDK in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted AAC file that is not properly handled during decoding. | |||||
CVE-2013-7260 | 1 Realnetworks | 1 Realplayer | 2024-02-28 | 7.5 HIGH | N/A |
Multiple stack-based buffer overflows in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allow remote attackers to execute arbitrary code via a long (1) version number or (2) encoding declaration in the XML declaration of an RMP file, a different issue than CVE-2013-6877. | |||||
CVE-2010-4388 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 4.3 MEDIUM | N/A |
The (1) Upsell.htm, (2) Main.html, and (3) Custsupport.html components in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.1.2 and 2.1.3 allow remote attackers to inject code into the RealOneActiveXObject process, and consequently bypass intended Local Machine Zone restrictions and load arbitrary ActiveX controls, via unspecified vectors. | |||||
CVE-2011-2946 | 1 Realnetworks | 2 Realplayer, Realplayer Sp | 2024-02-28 | 10.0 HIGH | N/A |
Unspecified vulnerability in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via unknown vectors. | |||||
CVE-2010-4389 | 2 Linux, Realnetworks | 3 Linux Kernel, Realplayer, Realplayer Sp | 2024-02-28 | 9.3 HIGH | N/A |
Heap-based buffer overflow in the cook codec in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, and Linux RealPlayer 11.0.2.1744 allows remote attackers to execute arbitrary code via unspecified data in the initialization buffer. | |||||
CVE-2010-2997 | 3 Apple, Linux, Realnetworks | 4 Mac Os X, Linux Kernel, Realplayer and 1 more | 2024-02-28 | 9.3 HIGH | N/A |
Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.0.6 and other versions, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted StreamTitle tag in an ICY SHOUTcast stream, related to the SMIL file format. | |||||
CVE-2010-4382 | 2 Linux, Realnetworks | 3 Linux Kernel, Realplayer, Realplayer Sp | 2024-02-28 | 9.3 HIGH | N/A |
Multiple heap-based buffer overflows in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.0.6 and other versions, allow remote attackers to have an unspecified impact via a crafted RealMedia file. |