Download
| Alert*
oval:org.mitre.oval:def:7507
Unspecified vulnerability in an ActiveX control in the Internet Explorer (IE) plugin in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows has unknown impact and attack vectors related to "multiple browser windows." oval:org.secpod.oval:def:6194 The host is installed with RealPlayer before 15.0.4.53 or RealPlayer SP 1.0 through 1.1.5 and is prone to buffer overflow vulnerability. A flaw is present in the applications, which fail to handle a crafted RealJukebox Media file. Successful exploitation allows remote attackers to execute arbitrary ... oval:org.secpod.oval:def:6196 The host is installed with RealPlayer before 15.0.4.53 or RealPlayer SP 1.0 through 1.1.5 and is prone to memory corruption vulnerability. A flaw is present in the applications, which fail to handle mp4fformat.dll in the QuickTime File Format plugin. Successful exploitation allows remote attackers t ... oval:org.secpod.oval:def:14053 The host is installed with RealNetworks RealPlayer or RealPlayer SP and is prone to heap buffer overflow vulnerability. A flaw is present in the application due to improper bounds checking of MP4 files. Successful exploitation allows remote attackers to execute arbitrary code via a malformed MP4 fil ... oval:org.secpod.oval:def:4355 The host is installed with RealPlayer 11.x through 11.1, 14.x through 14.0.7, 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5 and is prone to a remote code execution vulnerability. A flaw is present in the applications, which fail to handle a crafted RV20 RealVideo video stream. Successful ... oval:org.secpod.oval:def:4356 The host is installed with RealNetworks RealPlayer 11.x through 11.1, 14.x through 14.0.7, 15.x before 15.02.71, or RealPlayer SP 1.0 through 1.1.5 and is prone to a remote code execution vulnerability. A flaw is present in the applications, which fail to handle crafted flags in an RMFF file. Succes ... oval:org.secpod.oval:def:4357 The host is installed with RealNetworks RealPlayer 11.x through 11.1, 14.x through 14.0.7, 15.x before 15.02.71, or RealPlayer SP 1.0 through 1.1.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to handle vectors involving a VIDOBJ_START_ ... oval:org.secpod.oval:def:4358 The host is installed with RealNetworks RealPlayer 11.x through 11.1, 14.x through 14.0.7, 15.x before 15.02.71, or RealPlayer SP 1.0 through 1.1.5 and is prone to an unspecified vulnerability. A flaw is present in the applications, which fail to handle a crafted RV40 RealVideo video stream. Success ... oval:org.secpod.oval:def:4359 The host is installed with RealNetworks RealPlayer 11.x through 11.1, 14.x through 14.0.7, 15.x before 15.02.71, or RealPlayer SP 1.0 through 1.1.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle height and width values. ... oval:org.secpod.oval:def:4360 The host is installed with RealNetworks RealPlayer 11.x through 11.1, 14.x through 14.0.7, 15.x before 15.02.71, or RealPlayer SP 1.0 through 1.1.5 and is prone to an unspecified vulnerability. A flaw is present in the applications, which fail to properly handle vectors involving the coded_frame_siz ... oval:org.secpod.oval:def:6195 The host is installed with RealPlayer before 15.0.4.53 or RealPlayer SP 1.0 through 1.1.5 and is prone to remote code execution vulnerability. A flaw is present in the applications, which fail to properly parse ASMRuleBook data in RealMedia files. Successful exploitation allows remote attackers to e ... oval:org.secpod.oval:def:293 The host is installed with RealNetworks RealPlayer or RealPlayer SP and is prone to heap-based buffer overflow vulnerability. A flaw is present in vidplin.dll, which fails to perform the boundary check while processing malformed header data. Successful exploitation allows remote attackers to execute ... oval:org.mitre.oval:def:6807 Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows allows remote attackers to execute arbitrary code via large size values in QCP audio content. oval:org.secpod.oval:def:7510 The host is installed with RealPlayer 15.0.4.53 or prior or RealPlayer SP 1.0 through 1.1.5 and is prone to denial of service vulnerability. A flaw is present in the applications, which fail to properly handle codec frame sizes in RealAudio files. Successful exploitation allows remote attackers to c ... oval:org.secpod.oval:def:16099 The host is installed with RealPlayer before 16.0.3.51, RealPlayer SP 1.0 through 1.1.5 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted .rmp file. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:2109 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 or RealPlayer Enterprise 2.0 through 2.1.5 and is prone to use-after-free vulnerability. A flaw is present in the application which fails to properly handle memory. Successful exploita ... oval:org.secpod.oval:def:16098 The host is installed with RealPlayer before 16.0.3.51, RealPlayer SP 1.0 through 1.1.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a malformed RealMedia file. Successful exploitation could allow attackers to execute arbitrary code o ... oval:org.secpod.oval:def:2110 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 and is prone to use-after-free vulnerability. A flaw is present in the application which fails to properly handle memory. Successful exploitation allows remote attackers to execute arb ... oval:org.secpod.oval:def:2112 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 or RealPlayer Enterprise 2.0 through 2.1.5 and is prone to use-after-free vulnerability. A flaw is present in the application which fails to properly handle memory. Successful exploita ... oval:org.secpod.oval:def:2111 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 and is prone to remote code-execution vulnerability. A flaw is present in the application which is caused due to an out-of-bounds condition. Successful exploitation allows remote attac ... oval:org.secpod.oval:def:2114 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application which fails to properly handle crafted QCP file. Successful exploitation allows remote at ... oval:org.secpod.oval:def:2113 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 and is prone to buffer overflow vulnerability. A flaw is present in the application which fails to properly handle crafted raw_data_frame field in an AAC file. Successful exploitation ... oval:org.secpod.oval:def:2116 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 or RealPlayer Enterprise 2.0 through 2.1.5 and is prone to remote code-execution vulnerability. A flaw is present in the application which fails to sufficiently validate user-supplied ... oval:org.secpod.oval:def:2115 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 or RealPlayer Enterprise 2.0 through 2.1.5 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application which fails to properly handle crafted ID3v2 t ... oval:org.secpod.oval:def:2118 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 and is prone to remote code execution vulnerability. A flaw is present in the application which fails to sufficiently validate user-supplied data. Successful exploitation allows remote ... oval:org.secpod.oval:def:2117 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 or RealPlayer Enterprise 2.0 through 2.1.5 and is prone to cross-zone scripting vulnerability. A flaw is present in the application which fails to properly handle local HTML files. Suc ... oval:org.secpod.oval:def:2119 The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application which fails to perform adequate boundary-checks on user-supplied data. Successful exploit ... oval:org.mitre.oval:def:7169 RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows do not properly handle dimensions during YUV420 transformations, which might allow remote attackers to execute arbitrary code via crafted MP4 content. oval:org.mitre.oval:def:7326 Integer overflow in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows might allow remote attackers to execute arbitrary code via a crafted QCP file that triggers a heap-based buffer overflow. oval:org.secpod.oval:def:946 The host is installed with RealNetworks RealPlayer or RealPlayer SP and is prone to remote code execution vulnerability. A flaw is present in the OpenURLInDefaultBrowser method, which launches a default handler for the filename specified in the first argument. Successful exploitation allows remote a ... oval:org.secpod.oval:def:7509 The host is installed with RealPlayer 15.0.2.72 or prior or RealPlayer SP 1.0 through 1.1.5 and is prone to buffer overflow vulnerability. A flaw is present in the applications, which fail to handle a crafted RealMedia file. Successful exploitation allows remote attackers to cause a denial of servic ... oval:org.secpod.oval:def:7506 The host is installed with RealPlayer 15.0.2.72 or prior or RealPlayer SP 1.0 through 1.1.5 and is prone to buffer overflow vulnerability. A flaw is present in the applications, which fail to properly unpack steam-data of a crafted AAC file. Successful exploitation allows remote attackers to cause a ... oval:org.secpod.oval:def:7507 The host is installed with RealPlayer 15.0.2.72 or prior or RealPlayer SP 1.0 through 1.1.5 and is prone to denial of service vulnerability. A flaw is present in the applications, which fail to properly decode a crafted AAC file. Successful exploitation allows remote attackers to cause a denial of s ... oval:org.secpod.oval:def:7508 The host is installed with RealPlayer 15.0.2.72 or prior or RealPlayer SP 1.0 through 1.1.5 and is prone to buffer overflow vulnerability. A flaw is present in the applications, which fail to handle a crafted RealMedia file. Successful exploitation allows remote attackers to cause a denial of servic ... oval:org.secpod.oval:def:2120 The host is installed with RealPlayer 14.0.0 through 14.0.5 and is prone to Cross-Zone scripting remote code execution vulnerability. A flaw is present in the application that is caused by an error related to processing HTML files. Successful exploitation allows remote attackers to execute arbitrary ... oval:org.secpod.oval:def:2243 The host is installed with RealNetworks RealPlayer 11.0 through 11.1 or SP 1.0 through 1.1.5 or 14.0.0 through 14.0.1 or Enterprise 2.0 through 2.1.4 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which uses predictable names for temporary files and ... oval:org.secpod.oval:def:8236 The host is installed with RealNetworks RealPlayer 14.0 before 16.0.0.282, 11.0 through 11.1 or RealPlayer SP 1.0 through 1.1.5 and is prone to buffer overflow vulnerability. A flaw is present in the applications, which fail to handle a crafted RealMedia file. Successful exploitation allows remote a ... oval:org.secpod.oval:def:8237 The host is installed with RealNetworks RealPlayer before 16.0.0.282, 11.0 through 11.1 or RealPlayer SP 1.0 through 1.1.5 and is prone to arbitrary code execution vulnerability. A flaw is present in the applications, which fail to handle a RealAudio file that triggers access to an invalid pointer. ... oval:org.mitre.oval:def:6651 Multiple integer overflows in the ParseKnownType function in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows allow remote attackers to execute arbitrary code via crafted (1) HX_FLV_META_AMF_TYPE_MIXEDARRAY or (2) HX_FLV_META_AMF_TYPE_ARRAY data in an FLV file ... oval:org.secpod.oval:def:4361 The host is installed with RealNetworks RealPlayer 11.x through 11.1, 14.x through 14.0.7, or RealPlayer SP 1.0 through 1.1.5 and is prone to an unspecified vulnerability. A flaw is present in the applications, which fail to properly decode samples. Successful exploitation could allow attackers to e ... |