11 matches found
EUVD-2011-4198
Malware in sbrugna...
RealNetworks RealPlayer RV30 Sample Arbitrary Index Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks Real Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...
RealNetworks RealPlayer Multiple Vulnerabilities (Nov 2011) - Mac OS X
RealPlayer is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2011-4256
The RV30 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 does not initialize an unspecified index value, which allows remote attackers to execute arbitrary code via unknown vectors...
CVE-2011-4249
Array index error in the RV30 codec in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via unspecified vectors...
Code injection
The RV30 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 does not initialize an unspecified index value, which allows remote attackers to execute arbitrary code via unknown vectors...
Code injection
Array index error in the RV30 codec in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2011-4256
The RV30 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 does not initialize an unspecified index value, which allows remote attackers to execute arbitrary code via unknown vectors...
CVE-2011-4249
RealPlayer (Windows) before 15.0.0 is affected by CVE-2011-4249 due to an array index error in the RV30 codec during parsing of RV30 data, enabling remote code execution. ZDI notes the flaw allows code execution on vulnerable installations and requires user interaction (visiting a malicious page ...
CVE-2011-4256
CVE-2011-4256 affects RealNetworks RealPlayer (RV30 codec). The vulnerability occurs when parsing RV30 samples: the code allocates a buffer then fails to fully initialize it and improperly trusts an index from the partially filled buffer, enabling memory corruption that can lead to remote code ex...
CVE-2011-4249
Array index error in the RV30 codec in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via unspecified vectors...