This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:realnetworks:realplayer:10.5 |
| Detail | |||
|---|---|---|---|
| Vendor | Realnetworks | First view | 2004-09-29 |
| Product | Realplayer | Last view | 2013-03-20 |
| Version | 10.5 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:realnetworks:realplayer | ||
Activity : Yearly
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 9.3 | 2013-03-20 | CVE-2013-1750 | Network | Medium | None Requ... | |
| 9.3 | 2012-12-19 | CVE-2012-5691 | Network | Medium | None Requ... | |
| 9.3 | 2012-12-19 | CVE-2012-5690 | Network | Medium | None Requ... | |
| 7.5 | 2012-09-12 | CVE-2012-3234 | Network | Low | None Requ... | |
| 6.8 | 2012-09-12 | CVE-2012-2410 | Network | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 7.5 | 2012-09-12 | CVE-2012-2409 | Network | Low | None Requ... | |
| 6.8 | 2012-09-12 | CVE-2012-2408 | Network | Medium | None Requ... | |
| 7.5 | 2012-09-12 | CVE-2012-2407 | Network | Low | None Requ... | |
| 9.3 | 2012-05-18 | CVE-2012-2411 | Network | Medium | None Requ... | |
| 9.3 | 2012-05-18 | CVE-2012-2406 | Network | Medium | None Requ... | |
| 4.3 | 2012-03-28 | CVE-2012-1904 | Network | Medium | None Requ... | |
| 9.3 | 2011-11-24 | CVE-2011-4262 | Network | Medium | None Requ... | |
| 9.3 | 2011-11-24 | CVE-2011-4261 | Network | Medium | None Requ... | |
| 9.3 | 2011-11-24 | CVE-2011-4260 | Network | Medium | None Requ... | |
| 9.3 | 2011-11-24 | CVE-2011-4259 | Network | Medium | None Requ... | |
| 9.3 | 2011-11-24 | CVE-2011-4258 | Network | Medium | None Requ... | |
| 9.3 | 2011-11-24 | CVE-2011-4257 | Network | Medium | None Requ... | |
| 10 | 2011-11-24 | CVE-2011-4256 | Network | Low | None Requ... | |
| 10 | 2011-11-24 | CVE-2011-4255 | Network | Low | None Requ... | |
| 10 | 2011-11-24 | CVE-2011-4254 | Network | Low | None Requ... | |
| 10 | 2011-11-24 | CVE-2011-4253 | Network | Low | None Requ... | |
| 9.3 | 2011-11-24 | CVE-2011-4252 | Network | Medium | None Requ... | |
| 9.3 | 2011-11-24 | CVE-2011-4251 | Network | Medium | None Requ... | |
| 10 | 2011-11-24 | CVE-2011-4250 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 65% (26) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 25% (10) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 5% (2) | CWE-189 | Numeric Errors |
| 2% (1) | CWE-399 | Resource Management Errors |
| 2% (1) | CWE-20 | Improper Input Validation |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:11419 | Heap-based buffer overflow in RealNetworks RealPlayer 10.5 (6.0.12.1056 and e... |
| oval:org.mitre.oval:def:9550 | Integer overflow in RealNetworks RealPlayer 8, 10, and 10.5, RealOne Player 1... |
| oval:org.mitre.oval:def:11444 | Heap-based buffer overflow in the embedded player in multiple RealNetworks pr... |
| oval:org.mitre.oval:def:10554 | Stack-based buffer overflow in the SmilTimeValue::parseWallClockValue functio... |
| oval:org.mitre.oval:def:10144 | Heap-based buffer overflow in the CGIFCodec::GetPacketBuffer function in data... |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:9998 | Heap-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0... |
| oval:org.mitre.oval:def:10677 | Stack-based buffer overflow in protocol/rtsp/rtspclnt.cpp in RealNetworks Rea... |
| oval:org.mitre.oval:def:10641 | Buffer overflow in the RTSPProtocol::HandleSetParameterRequest function in cl... |
| oval:org.mitre.oval:def:11110 | Heap-based buffer overflow in datatype/smil/common/smlpkt.cpp in smlrender.dl... |
Open Source Vulnerability Database (OSVDB)
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 77286 | RealPlayer RTSP SETUP Request Handling Unspecified Remote Code Execution |
| 77285 | RealPlayer RV20 File Decoding Unspecified Remote Code Execution |
| 77284 | RealPlayer RV10 Sample Height Handling Unspecified Remote Code Execution |
| 77283 | RealPlayer MP4 File Handling Unspecified Remote Code Execution |
| 77282 | RealPlayer MP4 Video Dimension Handling Unspecified Remote Memory Corruption |
| id | Description |
|---|---|
| 77281 | RealPlayer mp4arender.dll module esds Channel Count Handling Remote Overflow |
| 77280 | RealPlayer MPG Zero Width Value Handling Remote Memory Corruption |
| 77279 | RealPlayer IVR MLTI Chunk Length Handling Remote Overflow |
| 77278 | RealPlayer Cook Codec Channel Handling Unspecified Remote Code Execution |
| 77277 | RealPlayer RV30 Uninitialized Index Value Handling Unspecified Remote Code Ex... |
| 77276 | RealPlayer Invalid Codec Name Handling Unspecified Remote Code Execution |
| 77275 | RealPlayer RealAudio Sample Size Handling Unspecified Remote Code Execution |
| 77274 | RealPlayer ATRC Codec Handling Unspecified Remote Code Execution |
| 77273 | RealPlayer RV30 Encoded File Handling Index Unspecified Remote Code Execution |
| 77272 | RealPlayer Channel Change AAC File Handling Remote Overflow |
| 77271 | RealPlayer QCELP Stream Handling Unspecified Remote Code Execution |
| 77270 | RealPlayer AAC Codec Handling Unspecified Remote Memory Corruption |
| 77269 | RealPlayer RealVideo Rendering Handling Unspecified Remote Memory Corruption |
| 77268 | RealPlayer RealVideo Rendering Handling Unspecified Remote Overflow |
| 71260 | RealPlayer rvrender.dll IVR File Handling Overflow |
| 61973 | RealNetworks Multiple Products smlrender.dll SMIL File Handling Overflow |
| 61972 | RealNetworks Multiple Products CMediumBlockAllocator::Alloc Method Crafted RT... |
| 61971 | RealNetworks Multiple Products Crafted ASM RuleBook Overflow |
| 61970 | RealNetworks Multiple Products RJS Skin File Handling Overflow |
| 61969 | RealNetworks Multiple Products Compressed GIF File Handling Overflow |
Milw0rm Exploits
| id | Description |
|---|---|
| 2008-04-01 | Real Player rmoc3260.dll ActiveX Control Remote Code Execution Exploit |
| 2006-12-28 | RealPlayer 10.5 ierpplug.dll Internet Explorer Denial of Service Exploit |
| 2006-12-20 | RealPlayer 10.5 (ActiveX Control) Denial of Service Exploit |
ExploitDB Exploits
| id | Description |
|---|---|
| 1622 | RealPlayer <= 10.5 (6.0.12.1040-1348) SWF Buffer Overflow PoC |
Metasploit Exploits
| id | Description |
|---|---|
| 2008-03-08 | RealPlayer rmoc3260.dll ActiveX Control Heap Corruption |
| 2012-12-14 | RealPlayer RealMedia File Handling Buffer Overflow |
| 2007-10-18 | RealPlayer ierpplug.dll ActiveX Control Playlist Name Buffer Overflow |
