This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:realnetworks:realplayer:11.1
Detail
VendorRealnetworksFirst view 2010-08-30
ProductRealplayerLast view 2014-01-03
Version11.1TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:realnetworks:realplayer

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
7.52014-01-03CVE-2013-7260NetworkLowNone Requ...
9.32013-08-26CVE-2013-4974NetworkMediumNone Requ...
9.32013-08-26CVE-2013-4973NetworkMediumNone Requ...
4.32013-07-06CVE-2013-3299NetworkMediumNone Requ...
9.32013-03-20CVE-2013-1750NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32012-12-19CVE-2012-5691NetworkMediumNone Requ...
9.32012-12-19CVE-2012-5690NetworkMediumNone Requ...
7.52012-09-12CVE-2012-3234NetworkLowNone Requ...
6.82012-09-12CVE-2012-2410NetworkMediumNone Requ...
7.52012-09-12CVE-2012-2409NetworkLowNone Requ...
6.82012-09-12CVE-2012-2408NetworkMediumNone Requ...
7.52012-09-12CVE-2012-2407NetworkLowNone Requ...
9.32012-05-18CVE-2012-2411NetworkMediumNone Requ...
9.32012-05-18CVE-2012-2406NetworkMediumNone Requ...
4.32012-03-28CVE-2012-1904NetworkMediumNone Requ...
9.32012-02-08CVE-2012-0928NetworkMediumNone Requ...
9.32012-02-08CVE-2012-0927NetworkMediumNone Requ...
9.32012-02-08CVE-2012-0926NetworkMediumNone Requ...
9.32012-02-08CVE-2012-0925NetworkMediumNone Requ...
9.32012-02-08CVE-2012-0924NetworkMediumNone Requ...
9.32012-02-08CVE-2012-0923NetworkMediumNone Requ...
9.32012-02-08CVE-2012-0922NetworkMediumNone Requ...
9.32011-11-24CVE-2011-4262NetworkMediumNone Requ...
9.32011-11-24CVE-2011-4261NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
52% (45)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
22% (19)CWE-94Failure to Control Generation of Code ('Code Injection')
8% (7)CWE-189Numeric Errors
8% (7)CWE-20Improper Input Validation
4% (4)CWE-399Resource Management Errors
Hide | Show 2 More...
%idName
2% (2)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
1% (1)CWE-264Permissions, Privileges, and Access Controls

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:7326Integer overflow vulnerability in RealNetworks RealPlayer 11.0 through 11.1 a...
oval:org.mitre.oval:def:7169Vulnerability in RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1...
oval:org.mitre.oval:def:6807Heap-based buffer overflow vulnerability in RealNetworks RealPlayer 11.0 thro...
oval:org.mitre.oval:def:6703Array index error vulnerability in RealNetworks RealPlayer 11.0 through 11.1
oval:org.mitre.oval:def:6651Multiple integer overflows in the ParseKnownType function in RealNetworks Rea...
Hide | Show 2 More...
idName
oval:org.mitre.oval:def:7507Unspecified vulnerability in an ActiveX control in the Internet Explorer (IE)...
oval:org.mitre.oval:def:7227Unspecified vulnerability in RealNetworks RealPlayer 11.0 through 11.1 allows...

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
77286RealPlayer RTSP SETUP Request Handling Unspecified Remote Code Execution
77285RealPlayer RV20 File Decoding Unspecified Remote Code Execution
77284RealPlayer RV10 Sample Height Handling Unspecified Remote Code Execution
77283RealPlayer MP4 File Handling Unspecified Remote Code Execution
77282RealPlayer MP4 Video Dimension Handling Unspecified Remote Memory Corruption
Hide | Show 20 More...
idDescription
77281RealPlayer mp4arender.dll module esds Channel Count Handling Remote Overflow
77280RealPlayer MPG Zero Width Value Handling Remote Memory Corruption
77279RealPlayer IVR MLTI Chunk Length Handling Remote Overflow
77278RealPlayer Cook Codec Channel Handling Unspecified Remote Code Execution
77277RealPlayer RV30 Uninitialized Index Value Handling Unspecified Remote Code Ex...
77276RealPlayer Invalid Codec Name Handling Unspecified Remote Code Execution
77275RealPlayer RealAudio Sample Size Handling Unspecified Remote Code Execution
77274RealPlayer ATRC Codec Handling Unspecified Remote Code Execution
77273RealPlayer RV30 Encoded File Handling Index Unspecified Remote Code Execution
77272RealPlayer Channel Change AAC File Handling Remote Overflow
77271RealPlayer QCELP Stream Handling Unspecified Remote Code Execution
77270RealPlayer AAC Codec Handling Unspecified Remote Memory Corruption
77269RealPlayer RealVideo Rendering Handling Unspecified Remote Memory Corruption
77268RealPlayer RealVideo Rendering Handling Unspecified Remote Overflow
76074RealPlayer Local HTML File Cross-Zone Scripting Remote Code Execution (2011-1...
74555RealPlayer ActiveX Control Embedded Modal Dialog Unspecified Use-after-free I...
74554RealPlayer ActiveX Control Embedded AutoUpdate Unspecified Use-after-free Issue
74553RealPlayer ActiveX Control Unspecified Out-of-bounds Issue
74552RealPlayer AAC raw_data_frame Element Parsing Overflow
74551RealPlayer pngu3267.dll Use-after-free Dialog Box Handling Memory Corruption

ExploitDB Exploits

idDescription
30468RealNetworks RealPlayer 16.0.3.51/16.0.2.32 - (.rmp) Version Attribute Buffer...
14992MOAUB #13 - RealPlayer FLV Parsing Integer Overflow

Metasploit Exploits

idDescription
2012-12-14RealPlayer RealMedia File Handling Buffer Overflow
2013-12-20RealNetworks RealPlayer Version Attribute Buffer Overflow
2011-08-16RealNetworks Realplayer QCP Parsing Heap Overflow
2010-11-15RealNetworks RealPlayer CDDA URI Initialization Vulnerability

OpenVAS Exploits

idDescription
2012-12-25Name : RealNetworks RealPlayer Code Execution Vulnerabilities - Dec12 (Win)
File : nvt/gb_realplayer_code_exec_vuln_dec12_win.nasl
2012-09-21Name : RealNetworks RealPlayer Multiple Vulnerabilities - Sep12 (Mac OS X)
File : nvt/gb_realplayer_mult_vuln_sep12_macosx.nasl
2012-09-21Name : RealNetworks RealPlayer Multiple Vulnerabilities - Sep12 (Win)
File : nvt/gb_realplayer_mult_vuln_sep12_win.nasl
2012-07-30Name : CentOS Update for HelixPlayer-uninstall CESA-2010:0981 centos4 x86_64
File : nvt/gb_CESA-2010_0981_HelixPlayer-uninstall_centos4_x86_64.nasl
2012-04-02Name : RealNetworks RealPlayer MP4 File Handling Denial of Service Vulnerability (Win)
File : nvt/gb_realplayer_mp4_file_dos_vuln_win.nasl
Hide | Show 20 More...
idDescription
2012-02-21Name : RealNetworks RealPlayer Atrac Sample Decoding Remote Code Execution Vulnerab...
File : nvt/gb_realplayer_atrac_sample_code_exec_vuln_macosx.nasl
2012-02-21Name : RealNetworks RealPlayer Atrac Sample Decoding Remote Code Execution Vulnerab...
File : nvt/gb_realplayer_atrac_sample_code_exec_vuln_win.nasl
2012-02-21Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win) - Feb12
File : nvt/gb_realplayer_mult_vuln_win_feb12.nasl
2011-11-29Name : RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Mac OS X)
File : nvt/secpod_realplayer_mult_vuln_nov11_macosx.nasl
2011-11-29Name : RealNetworks RealPlayer Multiple Vulnerabilities Nov - 11 (Win)
File : nvt/secpod_realplayer_mult_vuln_nov11_win.nasl
2011-08-31Name : RealNetworks RealPlayer Multiple Vulnerabilities (Mac OS X)
File : nvt/secpod_realplayer_mult_vuln_macosx.nasl
2011-08-31Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win) - Aug11
File : nvt/secpod_realplayer_mult_vuln_win_01_aug11.nasl
2011-08-31Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win) - Aug11
File : nvt/secpod_realplayer_mult_vuln_win_02_aug11.nasl
2011-08-09Name : CentOS Update for HelixPlayer-uninstall CESA-2010:0981 centos4 i386
File : nvt/gb_CESA-2010_0981_HelixPlayer-uninstall_centos4_i386.nasl
2011-04-22Name : RealNetworks RealPlayer 'OpenURLInDefaultBrowser()' Code Execution Vulnerabil...
File : nvt/gb_realplayer_code_exec_vuln_win.nasl
2011-04-11Name : RealNetworks RealPlayer IVR File Processing Buffer Overflow Vulnerability (Wi...
File : nvt/gb_realplayer_ivr_bof_vuln_win.nasl
2011-02-18Name : RealNetworks RealPlayer Buffer Overflow Vulnerability (Windows)
File : nvt/gb_realplayer_bof_vuln_win.nasl
2010-12-29Name : RealNetworks RealPlayer Multiple Vulnerabilities (Linux) - Dec 10
File : nvt/gb_realplayer_mult_vuln_lin_dec10.nasl
2010-12-29Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win) - Dec10
File : nvt/gb_realplayer_mult_vuln_win_01_dec10.nasl
2010-12-29Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win) - Dec10
File : nvt/gb_realplayer_mult_vuln_win_02_dec10.nasl
2010-12-29Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win) - Dec10
File : nvt/gb_realplayer_mult_vuln_win_03_dec10.nasl
2010-12-29Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win) - Dec10
File : nvt/gb_realplayer_mult_vuln_win_04_dec10.nasl
2010-12-29Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win) - Dec10
File : nvt/gb_realplayer_mult_vuln_win_dec10.nasl
2010-09-08Name : RealNetworks RealPlayer Multiple Vulnerabilities (Windows)
File : nvt/gb_realnetwoks_realplayer_mult_vuln_win.nasl
2010-09-08Name : RealNetworks RealPlayer Multiple Vulnerabilities (Win)
File : nvt/gb_realplayer_mult_vuln_win.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2014-A-0013Multiple Vulnerabilities in RealPlayer
Severity : Category II - VMSKEY : V0043409
2013-A-0166Multiple Security Vulnerabilities in RealNetworks RealPlayer
Severity : Category II - VMSKEY : V0040163

Snort® IPS/IDS

DateDescription
2014-11-16RealNetworks RealPlayer mpeg width integer memory underflow attempt
RuleID : 31376 - Type : FILE-MULTIMEDIA - Revision : 2
2014-01-16RealNetworks RealPlayer RealMedia URL length buffer overflow attempt
RuleID : 28962 - Type : FILE-MULTIMEDIA - Revision : 2
2014-01-16RealNetworks RealPlayer RealMedia URL length buffer overflow attempt
RuleID : 28961 - Type : FILE-MULTIMEDIA - Revision : 2
2014-01-10RealNetworks RealPlayer mpeg width integer memory underflow attempt
RuleID : 21112 - Type : FILE-MULTIMEDIA - Revision : 9
2014-01-10RealNetworks RealPlayer QCP parsing buffer overflow attempt
RuleID : 20288 - Type : FILE-MULTIMEDIA - Revision : 8
Hide | Show 10 More...
DateDescription
2014-01-10RealNetworks RealPlayer vidplin.dll avi header parsing execution attempt
RuleID : 19169 - Type : FILE-MULTIMEDIA - Revision : 7
2014-01-10RealNetworks RealPlayer IVR handling heap buffer overflow attempt
RuleID : 19127 - Type : FILE-MULTIMEDIA - Revision : 10
2014-01-10RealNetworks RealPlayer IVR handling heap buffer overflow attempt
RuleID : 19126 - Type : FILE-MULTIMEDIA - Revision : 10
2014-01-10RealNetworks RealPlayer FLV parsing two integer overflow vulnerabilities
RuleID : 19002 - Type : FILE-FLASH - Revision : 7
2014-01-10RealNetworks RealPlayer RMOC3260.DLL cdda URI overflow attempt
RuleID : 18578 - Type : BROWSER-PLUGINS - Revision : 6
2014-01-10RealNetworks RealPlayer RMOC3260.DLL ActiveX function call access
RuleID : 12767 - Type : BROWSER-PLUGINS - Revision : 12
2014-01-10RealNetworks RealPlayer RMOC3260.DLL ActiveX clsid access
RuleID : 12766 - Type : BROWSER-PLUGINS - Revision : 13
2014-01-10RealNetworks RealPlayer Ierpplug.dll ActiveX function call access
RuleID : 10194 - Type : BROWSER-PLUGINS - Revision : 17
2014-01-10RealNetworks RealPlayer Ierpplug.dll ActiveX function call access
RuleID : 10193 - Type : BROWSER-PLUGINS - Revision : 16
2014-01-10RealNetworks RealPlayer Ierpplug.dll ActiveX clsid access
RuleID : 10192 - Type : BROWSER-PLUGINS - Revision : 20

Nessus® Vulnerability Scanner

idDescription
2013-12-31Name : A multimedia application on the remote Windows host is affected by a buffer o...
File : realplayer_17_0_4_61.nasl - Type : ACT_GATHER_INFO
2013-08-28Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_16_0_3_51.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host has a deprecated application.
File : oraclelinux_ELSA-2010-0981.nasl - Type : ACT_GATHER_INFO
2013-03-20Name : A multimedia application on the remote Windows host is affected by a buffer o...
File : realplayer_16_0_1_18.nasl - Type : ACT_GATHER_INFO
2012-12-18Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_16_0_0_282.nasl - Type : ACT_GATHER_INFO
Hide | Show 13 More...
idDescription
2012-09-12Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_15_0_6_14.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20101214_HelixPlayer_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-05-17Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_15_0_4_53.nasl - Type : ACT_GATHER_INFO
2012-02-08Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_15_0_2_71.nasl - Type : ACT_GATHER_INFO
2011-12-06Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_15_0_0_198.nasl - Type : ACT_GATHER_INFO
2011-08-19Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_12_0_1_666.nasl - Type : ACT_GATHER_INFO
2011-04-14Name : A multimedia application on the remote Windows host is affected by multiple v...
File : realplayer_12_0_1_647.nasl - Type : ACT_GATHER_INFO
2011-01-28Name : A multimedia application on the remote Windows host can be abused to execute ...
File : realplayer_12_0_1_633.nasl - Type : ACT_GATHER_INFO
2011-01-28Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2010-0981.nasl - Type : ACT_GATHER_INFO
2010-12-15Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2010-0981.nasl - Type : ACT_GATHER_INFO
2010-11-16Name : An application on the remote Windows host is affected by multiple vulnerabili...
File : realplayer_12_0_1_609.nasl - Type : ACT_GATHER_INFO
2010-10-19Name : The remote Windows application is affected by multiple vulnerabilities.
File : realplayer_enterprise_6_0_12_1823.nasl - Type : ACT_GATHER_INFO
2010-08-27Name : The remote Windows application is affected by multiple vulnerabilities.
File : realplayer_12_0_0_879.nasl - Type : ACT_GATHER_INFO