Lucene search

[email protected]CVE-2011-4251

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-4251

2022-10-0316:15:15

CWE-94

[email protected]

web.nvd.nist.gov

realnetworks

realplayer

remote code execution

rce

crafted file

security vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

51.1%

JSON

RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted sample size in a RealAudio file.

Affected configurations

NVD

Node

realnetworksrealplayerRange≤14.0.7

realnetworksrealplayerMatch4

realnetworksrealplayerMatch5

realnetworksrealplayerMatch6

realnetworksrealplayerMatch7

realnetworksrealplayerMatch8

realnetworksrealplayerMatch10.0

realnetworksrealplayerMatch10.5

realnetworksrealplayerMatch11.0

realnetworksrealplayerMatch11.0.1

realnetworksrealplayerMatch11.0.2

realnetworksrealplayerMatch11.0.2.1744

realnetworksrealplayerMatch11.0.2.2315

realnetworksrealplayerMatch11.0.3

realnetworksrealplayerMatch11.0.4

realnetworksrealplayerMatch11.0.5

realnetworksrealplayerMatch11.1

realnetworksrealplayerMatch11.1.3

realnetworksrealplayerMatch11_build_6.0.14.748

realnetworksrealplayerMatch12.0.0.1444

realnetworksrealplayerMatch12.0.0.1548

realnetworksrealplayerMatch14.0.0

realnetworksrealplayerMatch14.0.1

realnetworksrealplayerMatch14.0.1.609

realnetworksrealplayerMatch14.0.1.633

realnetworksrealplayerMatch14.0.2

realnetworksrealplayerMatch14.0.3

realnetworksrealplayerMatch14.0.4

realnetworksrealplayerMatch14.0.5

realnetworksrealplayerMatch14.0.6

CPENameOperatorVersion
realnetworks:realplayerrealnetworks realplayerle14.0.7
realnetworks:realplayerrealnetworks realplayereq4
realnetworks:realplayerrealnetworks realplayereq5
realnetworks:realplayerrealnetworks realplayereq6
realnetworks:realplayerrealnetworks realplayereq7
realnetworks:realplayerrealnetworks realplayereq8
realnetworks:realplayerrealnetworks realplayereq10.0
realnetworks:realplayerrealnetworks realplayereq10.5
realnetworks:realplayerrealnetworks realplayereq11.0
realnetworks:realplayerrealnetworks realplayereq11.0.1

CPE	Name	Operator	Version
realnetworks:realplayer	realnetworks realplayer	le	14.0.7
realnetworks:realplayer	realnetworks realplayer	eq	4
realnetworks:realplayer	realnetworks realplayer	eq	5
realnetworks:realplayer	realnetworks realplayer	eq	6
realnetworks:realplayer	realnetworks realplayer	eq	7
realnetworks:realplayer	realnetworks realplayer	eq	8
realnetworks:realplayer	realnetworks realplayer	eq	10.0
realnetworks:realplayer	realnetworks realplayer	eq	10.5
realnetworks:realplayer	realnetworks realplayer	eq	11.0
realnetworks:realplayer	realnetworks realplayer	eq	11.0.1