This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:realnetworks:realplayer:10.0.0.305::mac_os
Detail
VendorRealnetworksFirst view 2005-06-28
ProductRealplayerLast view2014-07-07
Version10.0.0.305TypeApplication
Editionmac_os 
Language 
Update 
 
CPE Productcpe:/a:realnetworks:realplayer

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32014-07-07CVE-2014-3113NetworkMediumNone Requ...
9.32014-05-20CVE-2014-3444NetworkMediumNone Requ...
7.52014-01-03CVE-2013-7260NetworkLowNone Requ...
9.32013-08-26CVE-2013-4974NetworkMediumNone Requ...
9.32013-08-26CVE-2013-4973NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32013-07-06CVE-2013-3299NetworkMediumNone Requ...
9.32013-03-20CVE-2013-1750NetworkMediumNone Requ...
9.32012-12-19CVE-2012-5691NetworkMediumNone Requ...
9.32012-12-19CVE-2012-5690NetworkMediumNone Requ...
7.52012-09-12CVE-2012-3234NetworkLowNone Requ...
6.82012-09-12CVE-2012-2410NetworkMediumNone Requ...
7.52012-09-12CVE-2012-2409NetworkLowNone Requ...
6.82012-09-12CVE-2012-2408NetworkMediumNone Requ...
7.52012-09-12CVE-2012-2407NetworkLowNone Requ...
9.32012-05-18CVE-2012-2411NetworkMediumNone Requ...
9.32012-05-18CVE-2012-2406NetworkMediumNone Requ...
4.32012-03-28CVE-2012-1904NetworkMediumNone Requ...
9.32011-11-24CVE-2011-4262NetworkMediumNone Requ...
9.32011-11-24CVE-2011-4261NetworkMediumNone Requ...
9.32011-11-24CVE-2011-4260NetworkMediumNone Requ...
9.32011-11-24CVE-2011-4259NetworkMediumNone Requ...
9.32011-11-24CVE-2011-4258NetworkMediumNone Requ...
9.32011-11-24CVE-2011-4257NetworkMediumNone Requ...
102011-11-24CVE-2011-4256NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
54% (18)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
33% (11)CWE-94Failure to Control Generation of Code ('Code Injection')
6% (2)CWE-189Numeric Errors
6% (2)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:11444Heap-based buffer overflow in the embedded player in multiple RealNetworks pr...
oval:org.mitre.oval:def:9509Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on ...

SAINT Exploits

DescriptionLink
RealPlayer invalid chunk header heap overflowMore info here
RealPlayer InternetShortcut URL property buffer overflowMore info here

Open Source Vulnerability Database (OSVDB)

idDescription
77286RealPlayer RTSP SETUP Request Handling Unspecified Remote Code Execution
77285RealPlayer RV20 File Decoding Unspecified Remote Code Execution
77284RealPlayer RV10 Sample Height Handling Unspecified Remote Code Execution
77283RealPlayer MP4 File Handling Unspecified Remote Code Execution
77282RealPlayer MP4 Video Dimension Handling Unspecified Remote Memory Corruption
Hide | Show 17 More...
idDescription
77281RealPlayer mp4arender.dll module esds Channel Count Handling Remote Overflow
77280RealPlayer MPG Zero Width Value Handling Remote Memory Corruption
77279RealPlayer IVR MLTI Chunk Length Handling Remote Overflow
77278RealPlayer Cook Codec Channel Handling Unspecified Remote Code Execution
77277RealPlayer RV30 Uninitialized Index Value Handling Unspecified Remote Code Ex...
77276RealPlayer Invalid Codec Name Handling Unspecified Remote Code Execution
77275RealPlayer RealAudio Sample Size Handling Unspecified Remote Code Execution
77274RealPlayer ATRC Codec Handling Unspecified Remote Code Execution
77273RealPlayer RV30 Encoded File Handling Index Unspecified Remote Code Execution
77272RealPlayer Channel Change AAC File Handling Remote Overflow
77271RealPlayer QCELP Stream Handling Unspecified Remote Code Execution
77270RealPlayer AAC Codec Handling Unspecified Remote Memory Corruption
77269RealPlayer RealVideo Rendering Handling Unspecified Remote Memory Corruption
77268RealPlayer RealVideo Rendering Handling Unspecified Remote Overflow
71260RealPlayer rvrender.dll IVR File Handling Overflow
24062RealNetworks Multiple Products Web Page Embedded Player Content Overflow
17575RealPlayer rtffplin.cpp RealText File Parser Overflow

ExploitDB Exploits

idDescription
30468RealNetworks RealPlayer 16.0.3.51/16.0.2.32 - (.rmp) Version Attribute Buffer...

OpenVAS Exploits

idDescription
2012-12-25Name : RealNetworks RealPlayer Code Execution Vulnerabilities - Dec12 (Win)
File : nvt/gb_realplayer_code_exec_vuln_dec12_win.nasl
2012-09-21Name : RealNetworks RealPlayer Multiple Vulnerabilities - Sep12 (Mac OS X)
File : nvt/gb_realplayer_mult_vuln_sep12_macosx.nasl
2012-09-21Name : RealNetworks RealPlayer Multiple Vulnerabilities - Sep12 (Win)
File : nvt/gb_realplayer_mult_vuln_sep12_win.nasl
2012-04-02Name : RealNetworks RealPlayer MP4 File Handling Denial of Service Vulnerability (Win)
File : nvt/gb_realplayer_mp4_file_dos_vuln_win.nasl
2011-11-29Name : RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Mac OS X)
File : nvt/secpod_realplayer_mult_vuln_nov11_macosx.nasl
Hide | Show 6 More...
idDescription
2011-11-29Name : RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Win)
File : nvt/secpod_realplayer_mult_vuln_nov11_win.nasl
2011-04-11Name : RealNetworks RealPlayer IVR File Processing Buffer Overflow Vulnerability (Wi...
File : nvt/gb_realplayer_ivr_bof_vuln_win.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200507-04 (realplayer)
File : nvt/glsa_200507_04.nasl
2008-09-04Name : FreeBSD Ports: linux-realplayer
File : nvt/freebsd_linux-realplayer1.nasl
2008-09-04Name : FreeBSD Ports: linux-realplayer
File : nvt/freebsd_linux-realplayer3.nasl
2008-01-17Name : Debian Security Advisory DSA 826-1 (helix-player)
File : nvt/deb_826_1.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2014-A-0097RealPlayer Memory Corruption Vulnerability
Severity : Category I - VMSKEY : V0052943
2014-A-0013Multiple Vulnerabilities in RealPlayer
Severity : Category II - VMSKEY : V0043409
2013-A-0166Multiple Security Vulnerabilities in RealNetworks RealPlayer
Severity : Category II - VMSKEY : V0040163

Snort® IPS/IDS

DateDescription
2014-01-10RealNetworks RealPlayer realtext file bad version buffer overflow attempt
RuleID : 3823 - Type : FILE-MULTIMEDIA - Revision : 21
2014-01-10RealNetworks RealPlayer realtext long URI request attempt
RuleID : 3822 - Type : SERVER-WEBAPP - Revision : 14
2014-11-16RealNetworks RealPlayer mpeg width integer memory underflow attempt
RuleID : 31376 - Type : FILE-MULTIMEDIA - Revision : 3
2014-01-16RealNetworks RealPlayer RealMedia URL length buffer overflow attempt
RuleID : 28962 - Type : FILE-MULTIMEDIA - Revision : 8
2014-01-16RealNetworks RealPlayer RealMedia URL length buffer overflow attempt
RuleID : 28961 - Type : FILE-MULTIMEDIA - Revision : 7
Hide | Show 5 More...
DateDescription
2014-01-10RealNetworks RealPlayer mpeg width integer memory underflow attempt
RuleID : 21112 - Type : FILE-MULTIMEDIA - Revision : 14
2014-01-10RealNetworks RealPlayer IVR handling heap buffer overflow attempt
RuleID : 19127 - Type : FILE-MULTIMEDIA - Revision : 15
2014-01-10RealNetworks RealPlayer IVR handling heap buffer overflow attempt
RuleID : 19126 - Type : FILE-MULTIMEDIA - Revision : 15
2014-01-10RealNetworks RealPlayer invalid chunk size heap overflow attempt
RuleID : 17666 - Type : FILE-MULTIMEDIA - Revision : 12
2014-01-10Multiple web browsers HTTP chunked transfer-encoding memory corruption attempt
RuleID : 15462 - Type : BROWSER-OTHER - Revision : 20

Nessus® Vulnerability Scanner

idDescription
2014-07-10Name : A multimedia application on the remote Windows host is affected by multiple m...
File : realplayer_17_0_10_8.nasl - Type : ACT_GATHER_INFO
2013-12-31Name : A multimedia application on the remote Windows host is affected by a buffer o...
File : realplayer_17_0_4_61.nasl - Type : ACT_GATHER_INFO
2013-08-28Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_16_0_3_51.nasl - Type : ACT_GATHER_INFO
2013-03-20Name : A multimedia application on the remote Windows host is affected by a buffer o...
File : realplayer_16_0_1_18.nasl - Type : ACT_GATHER_INFO
2013-01-24Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2005-762.nasl - Type : ACT_GATHER_INFO
Hide | Show 18 More...
idDescription
2012-12-18Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_16_0_0_282.nasl - Type : ACT_GATHER_INFO
2012-09-12Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_15_0_6_14.nasl - Type : ACT_GATHER_INFO
2012-05-17Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_15_0_4_53.nasl - Type : ACT_GATHER_INFO
2011-12-06Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_15_0_0_198.nasl - Type : ACT_GATHER_INFO
2011-04-14Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_12_0_1_647.nasl - Type : ACT_GATHER_INFO
2007-01-08Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2005-788.nasl - Type : ACT_GATHER_INFO
2006-07-05Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2005-517.nasl - Type : ACT_GATHER_INFO
2006-05-13Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_fe4c84fcbdb511dab7d400123ffe8333.nasl - Type : ACT_GATHER_INFO
2006-03-27Name : The remote host is missing a vendor-supplied security patch
File : suse_SA_2006_018.nasl - Type : ACT_GATHER_INFO
2006-03-24Name : The remote Windows application is affected by several issues.
File : realplayer_6_0_12_1483.nasl - Type : ACT_GATHER_INFO
2005-10-05Name : The remote Debian host is missing a security-related update.
File : debian_DSA-826.nasl - Type : ACT_GATHER_INFO
2005-10-05Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2005-788.nasl - Type : ACT_GATHER_INFO
2005-07-20Name : The remote host is missing a vendor-supplied security patch
File : suse_SA_2005_037.nasl - Type : ACT_GATHER_INFO
2005-07-13Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_95ee96f2e48811d9bf22080020c11455.nasl - Type : ACT_GATHER_INFO
2005-07-06Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200507-04.nasl - Type : ACT_GATHER_INFO
2005-06-24Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2005-517.nasl - Type : ACT_GATHER_INFO
2005-06-24Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2005-523.nasl - Type : ACT_GATHER_INFO
2005-06-24Name : The remote Windows application is affected by multiple vulnerabilities.
File : realplayer_realtext_parsing_overflow.nasl - Type : ACT_GATHER_INFO