Lucene search
HistoryNov 24, 2011 - 11:55 a.m.
CVE-2011-4256
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.014 Low
EPSS
Percentile
86.2%
The RV30 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 does not initialize an unspecified index value, which allows remote attackers to execute arbitrary code via unknown vectors.
Affected configurations
Node
realnetworksrealplayerRange≤12.0.0.1701mac_os
ORrealnetworksrealplayerMatch7.0mac_os
ORrealnetworksrealplayerMatch8.0mac_os
ORrealnetworksrealplayerMatch10.0mac_os_x
ORrealnetworksrealplayerMatch10.0.0.305mac_os
ORrealnetworksrealplayerMatch10.0.0.331mac_os
ORrealnetworksrealplayerMatch10.1mac_os_x
ORrealnetworksrealplayerMatch12.0.0.1569mac_os
Node
realnetworksrealplayerRange≤14.0.7
ORrealnetworksrealplayerMatch4
ORrealnetworksrealplayerMatch5
ORrealnetworksrealplayerMatch6
ORrealnetworksrealplayerMatch7
ORrealnetworksrealplayerMatch8
ORrealnetworksrealplayerMatch10.0
ORrealnetworksrealplayerMatch10.5
ORrealnetworksrealplayerMatch11.0
ORrealnetworksrealplayerMatch11.0.1
ORrealnetworksrealplayerMatch11.0.2
ORrealnetworksrealplayerMatch11.0.2.1744
ORrealnetworksrealplayerMatch11.0.2.2315
ORrealnetworksrealplayerMatch11.0.3
ORrealnetworksrealplayerMatch11.0.4
ORrealnetworksrealplayerMatch11.0.5
ORrealnetworksrealplayerMatch11.1
ORrealnetworksrealplayerMatch11.1.3
ORrealnetworksrealplayerMatch11_build_6.0.14.748
ORrealnetworksrealplayerMatch12.0.0.1444
ORrealnetworksrealplayerMatch12.0.0.1548
ORrealnetworksrealplayerMatch14.0.0
ORrealnetworksrealplayerMatch14.0.1
ORrealnetworksrealplayerMatch14.0.1.609
ORrealnetworksrealplayerMatch14.0.1.633
ORrealnetworksrealplayerMatch14.0.2
ORrealnetworksrealplayerMatch14.0.3
ORrealnetworksrealplayerMatch14.0.4
ORrealnetworksrealplayerMatch14.0.5
ORrealnetworksrealplayerMatch14.0.6
Related
cve
cve
CVE-2011-4256
2022-10-03 16:15:13
zdi
zdi
securityvulns
securityvulns
cvelist
cvelist
CVE-2011-4256
2022-10-03 16:15:13
prion
prion
Code injection
2011-11-24 11:55:00
openvas
openvas
RealNetworks RealPlayer Multiple Vulnerabilities (Nov 2011) - Mac OS X
2011-11-29 00:00:00
RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Mac OS X)
2011-11-29 00:00:00
RealNetworks RealPlayer Multiple Vulnerabilities (Nov 2011) - Windows
2011-11-29 00:00:00
nessus
nessus
RealPlayer for Windows < 15.0.0 Multiple Vulnerabilities
2011-12-06 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.014 Low
EPSS
Percentile
86.2%
Related for NVD:CVE-2011-4256