Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2010:0981
HistoryDec 14, 2010 - 12:00 a.m.

(RHSA-2010:0981) Critical: HelixPlayer removal

2010-12-1400:00:00
access.redhat.com
14

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.171 Low

EPSS

Percentile

95.5%

JSON

Helix Player is a media player.

Multiple security flaws were discovered in RealPlayer. Helix Player and
RealPlayer share a common source code base; therefore, some of the flaws
discovered in RealPlayer may also affect Helix Player. Some of these flaws
could, when opening, viewing, or playing a malicious media file or stream,
lead to arbitrary code execution with the privileges of the user running
Helix Player. (CVE-2010-2997, CVE-2010-4375, CVE-2010-4378, CVE-2010-4379,
CVE-2010-4382, CVE-2010-4383, CVE-2010-4384, CVE-2010-4385, CVE-2010-4386,
CVE-2010-4392)

The Red Hat Security Response Team is unable to properly determine the
impact or fix all of these issues in Helix Player, due to the source code
for RealPlayer being unavailable.

Due to the security concerns this update removes the HelixPlayer package
from Red Hat Enterprise Linux 4. Users wishing to continue to use Helix
Player should download it directly from https://player.helixcommunity.org/

Related

oraclelinux 1
nessus 7
openvas 14
centos 1
veracode 10
prion 10
zdi 5
cvelist 10
cve 10
securityvulns 2
oraclelinux
oraclelinux
HelixPlayer removal
2010-12-14 00:00:00
nessus
nessus
CentOS 4 : HelixPlayer removal (CESA-2010:0981)
2011-01-28 00:00:00
Oracle Linux 4 : HelixPlayer removal (ELSA-2010-0981)
2013-07-12 00:00:00
Scientific Linux Security Update : HelixPlayer on SL4.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
CentOS Update for HelixPlayer-uninstall CESA-2010:0981 centos4 x86_64
2012-07-30 00:00:00
CentOS Update for HelixPlayer-uninstall CESA-2010:0981 centos4 x86_64
2012-07-30 00:00:00
CentOS Update for HelixPlayer-uninstall CESA-2010:0981 centos4 i386
2011-08-09 00:00:00
centos
centos
HelixPlayer security update
2011-01-27 09:15:23
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:52:02
Arbitrary Code Execution
2020-04-10 00:52:03
Arbitrary Code Execution
2020-04-10 00:52:03
prion
prion
Design/Logic Flaw
2010-12-14 16:00:00
Heap overflow
2010-12-14 16:00:00
Integer overflow
2010-12-14 16:00:00
zdi
zdi
RealNetworks RealPlayer Media Properties Header Parsing Remote Code Execution Vulnerability
2010-12-10 00:00:00
RealNetworks RealPlayer ImageMap Remote Code Execution Vulnerability
2010-12-10 00:00:00
RealNetworks RealPlayer ICY Protocol StreamTitle Remote Code Execution Vulnerability
2010-12-10 00:00:00
cvelist
cvelist
CVE-2010-4386
2010-12-14 15:00:00
CVE-2010-4392
2010-12-14 15:00:00
CVE-2010-4385
2010-12-14 15:00:00
cve
cve
CVE-2010-4383
2010-12-14 16:00:00
CVE-2010-4392
2010-12-14 16:00:00
CVE-2010-4384
2010-12-14 16:00:00
securityvulns
securityvulns
iDefense Security Advisory 12.10.10: RealNetworks RealPlayer Memory Corruption Vulnerability
2010-12-14 00:00:00
Real Player multiple security vulnerabilities
2010-12-21 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.171 Low

EPSS

Percentile

95.5%

JSON
Related for RHSA-2010:0981
oraclelinux1nessus7openvas14centos1veracode10prion10zdi5cvelist10cve10securityvulns2