Lucene search

K
RealnetworksRealone Player

14 matches found

CVE
CVE
added 2005/11/18 11:3 p.m.63 views

CVE-2005-2629

Integer overflow in RealNetworks RealPlayer 8, 10, and 10.5, RealOne Player 1 and 2, and Helix Player 10.0.0 allows remote attackers to execute arbitrary code via an .rm movie file with a large value in the length field of the first data packet, which leads to a stack-based buffer overflow, a diffe...

5.1CVSS7.7AI score0.37387EPSS
CVE
CVE
added 2005/02/13 5:0 a.m.56 views

CVE-2004-1481

Integer overflow in pnen3260.dll in RealPlayer 8 through 10.5 (6.0.12.1040) and earlier, and RealOne Player 1 or 2 on Windows or Mac OS, allows remote attackers to execute arbitrary code via a SMIL file and a .rm movie file with a large length field for the data chunk, which leads to a heap-based b...

5.1CVSS8AI score0.04555EPSS
CVE
CVE
added 2005/04/21 4:0 a.m.55 views

CVE-2005-0755

Heap-based buffer overflow in RealPlayer 10 and earlier, Helix Player before 10.0.4, and RealOne Player v1 and v2 allows remote attackers to execute arbitrary code via a long hostname in a RAM file.

5.1CVSS7.7AI score0.08417EPSS
CVE
CVE
added 2005/06/29 4:0 a.m.55 views

CVE-2005-2055

RealPlayer 8, 10, 10.5 (6.0.12.1040-1069), and Enterprise and RealOne Player v1 and v2 allows remote malicious web server to create an arbitrary HTML file that executes an RM file via "default settings of earlier Internet Explorer browsers".

5CVSS6.7AI score0.0034EPSS
CVE
CVE
added 2005/05/02 4:0 a.m.51 views

CVE-2005-0611

Heap-based buffer overflow in RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1, allows remote attackers to execute arbitrary code via .WAV files.

5.1CVSS7.8AI score0.04751EPSS
CVE
CVE
added 2005/06/28 4:0 a.m.49 views

CVE-2005-2052

Heap-based buffer overflow in vidplin.dll in RealPlayer 10 and 10.5 (6.0.12.1040 through 1069), RealOne Player v1 and v2, RealPlayer 8 and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an .avi file with a modified strf structure value.

5.1CVSS8.1AI score0.02908EPSS
CVE
CVE
added 2005/06/29 4:0 a.m.47 views

CVE-2005-2054

Unknown vulnerability in RealPlayer 10 and 10.5 (6.0.12.1040-1069) and RealOne Player v1 and v2 allows remote attackers to overwrite arbitrary files or execute arbitrary ActiveX controls via a crafted MP3 file.

5.1CVSS7.2AI score0.00636EPSS
CVE
CVE
added 2005/11/18 11:3 p.m.46 views

CVE-2005-2630

Heap-based buffer overflow in DUNZIP32.DLL for RealPlayer 8, 10, and 10.5 and RealOne Player 1 and 2 allows remote attackers to execute arbitrary code via a crafted RealPlayer Skin (RJS) file, a different vulnerability than CVE-2004-1094.

5.1CVSS8AI score0.44468EPSS
CVE
CVE
added 2005/02/06 5:0 a.m.44 views

CVE-2005-0191

Off-by-one buffer overflow in the processing of tags in Real Metadata Package (RMP) files in RealPlayer 10.5 (6.0.12.1040) and earlier could allow remote attackers to execute arbitrary code via a long tag.

5.1CVSS8AI score0.06588EPSS
CVE
CVE
added 2004/06/01 4:0 a.m.43 views

CVE-2004-0387

Stack-based buffer overflow in the RT3 plugin, as used in RealPlayer 8, RealOne Player, RealOne Player 10 beta, and RealOne Player Enterprise, allows remote attackers to execute arbitrary code via a malformed .R3T file.

5.1CVSS8AI score0.06287EPSS
CVE
CVE
added 2005/05/10 4:0 a.m.42 views

CVE-2004-1798

RealOne player 6.0.11.868 allows remote attackers to execute arbitrary script in the "My Computer" zone via a Synchronized Multimedia Integration Language (SMIL) presentation with a "file:javascript:" URL, which is executed in the security context of the previously loaded URL, a different vulnerabi...

5.1CVSS7.4AI score0.09581EPSS
CVE
CVE
added 2003/10/20 4:0 a.m.39 views

CVE-2003-0726

RealOne player allows remote attackers to execute arbitrary script in the "My Computer" zone via a SMIL presentation with a URL that references a scripting protocol, which is executed in the security context of the previously loaded URL, as demonstrated using a "javascript:" URL in the area tag.

5.1CVSS7AI score0.09581EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.37 views

CVE-2003-0141

The PNG deflate algorithm in RealOne Player 6.0.11.x and earlier, RealPlayer 8/RealPlayer Plus 8 6.0.9.584, and other versions allows remote attackers to corrupt the heap and overwrite arbitrary memory via a PNG graphic file format containing compressed data using fixed trees that contain the lengt...

5.1CVSS6.8AI score0.00241EPSS
CVE
CVE
added 2018/07/03 10:29 p.m.35 views

CVE-2018-13121

RealOne Player 2.0 Build 6.0.11.872 allows remote attackers to cause a denial of service (array out-of-bounds access and application crash) via a crafted .aiff file.

5.5CVSS5.4AI score0.00245EPSS