Realplayer@2.1.5 Security Vulnerabilities and Issues — Realplayer@2.1.5 CVE List

Lucene search

RealnetworksRealplayer2.1.5

7 matches found

CVE•added 2011/08/18 11:55 p.m.•47 views

CVE-2011-2952

Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via vectors related to a dialog box.

9.3CVSS7.7AI score0.02147EPSS

CVE•added 2011/10/04 10:55 p.m.•45 views

CVE-2011-1221

Cross-zone scripting vulnerability in the RealPlayer ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to inject arbitrary web script or HTML in the Local Zone ...

4.3CVSS5.9AI score0.00296EPSS

CVE•added 2011/08/18 11:55 p.m.•44 views

CVE-2011-2948

RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, RealPlayer Enterprise 2.0 through 2.1.5, and Mac RealPlayer 12.0.0.1569 do not properly handle DEFINEFONT fields in SWF files, which allows remote attackers to execute arbitrary code or cause a den...

9.3CVSS7.7AI score0.03426EPSS

CVE•added 2011/08/18 11:55 p.m.•44 views

CVE-2011-2953

An unspecified ActiveX control in the browser plugin in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via unknown vectors, related to an out-of-bound...

10CVSS7.8AI score0.04988EPSS

CVE•added 2011/08/18 11:55 p.m.•41 views

CVE-2011-2946

Unspecified vulnerability in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via unknown vectors.

10CVSS7.8AI score0.05874EPSS

CVE•added 2011/08/18 11:55 p.m.•40 views

CVE-2011-2955

Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5, when an Embedded RealPlayer is used, allows remote attackers to execute arbitrary code via vectors related to a modal di...

9.3CVSS7.7AI score0.02147EPSS

CVE•added 2011/08/18 11:55 p.m.•39 views

CVE-2011-2949

Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via crafted ID3v2 tags in an MP3 file.

9.3CVSS8.1AI score0.07457EPSS