ZDI-11-335 : RealNetworks RealPlayer RV10 Sample Height Parsing Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-11-335 : RealNetworks RealPlayer RV10 Sample Height Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-335 November 28, 2011 - -- CVE ID: CVE-2011-4252 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - --...

RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Mac OS X)

This host is installed with RealPlayer which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodrealplayermultvulnnov11macosx.nasl 7024 2017-08-30 11:51:43Z teissa $ RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 Mac OS X Authors: Madhuri D Copyright: Copyright...

RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Windows)

This host is installed with RealPlayer which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodrealplayermultvulnnov11win.nasl 7052 2017-09-04 11:50:51Z teissa $ RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 Windows Authors: Madhuri D Copyright: Copyright c...

RealNetworks RealPlayer Multiple Vulnerabilities (Nov 2011) - Windows

RealPlayer is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-4252

The RV10 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via a crafted sample height...

CVE-2011-4252

CVE-2011-4252 affects RealNetworks RealPlayer (Windows and Mac) where the RV10 codec parses a height value from a RealVideo object. The flaw allows memory corruption and remote code execution if a user opens a crafted sample or visits a malicious page. Public details indicate exploitation require...