Realplayer

realplayer

Vendor: Realnetworks • 170 CVEs

CVEs (170)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-2408 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Sep 12, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The AAC SDK in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service (heap memory corruption) or possibly ha...Show more The AAC SDK in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted AAC file that is not properly handled during decoding.Show less
CVE-2012-2407 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Sep 12, 2012 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service or possibly have unspecified other...Show more Buffer overflow in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted AAC file that is not properly handled during stream-data unpacking.Show less
CVE-2012-2411 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 May 18, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 Buffer overflow in RealNetworks RealPlayer before 15.0.4.53, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted RealJukebox Media file.
CVE-2012-2406 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 May 18, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 RealNetworks RealPlayer before 15.0.4.53, and RealPlayer SP 1.0 through 1.1.5, does not properly parse ASMRuleBook data in RealMedia files, which allows remote attackers to execute arbitrary code via a crafted file.
CVE-2012-1904 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Mar 28, 2012 N/A· v4 N/A· v3 4.3 MEDIUM· v2 mp4fformat.dll in the QuickTime File Format plugin in RealNetworks RealPlayer 15 and earlier, and RealPlayer SP 1.1.4 Build 12.0.0.756 and earlier, allows remote attackers to cause a denial of service (memory corruption...Show more mp4fformat.dll in the QuickTime File Format plugin in RealNetworks RealPlayer 15 and earlier, and RealPlayer SP 1.1.4 Build 12.0.0.756 and earlier, allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP4 file.Show less
CVE-2012-0928 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Feb 8, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 The ATRAC codec in RealNetworks RealPlayer 11.x and 14.x through 14.0.7, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer 12.x before 12.0.0.1703 does not properly decode samples, which allows remote attackers to exec...Show more The ATRAC codec in RealNetworks RealPlayer 11.x and 14.x through 14.0.7, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer 12.x before 12.0.0.1703 does not properly decode samples, which allows remote attackers to execute arbitrary code via a crafted ATRAC audio file.Show less
CVE-2012-0927 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Feb 8, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 Unspecified vulnerability in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via vectors involving the coded_frame_size...Show more Unspecified vulnerability in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via vectors involving the coded_frame_size value in a RealAudio audio stream.Show less
CVE-2012-0926 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Feb 8, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 The RV10 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, does not properly handle height and width values, which allows remote attackers to execute arbitrary co...Show more The RV10 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, does not properly handle height and width values, which allows remote attackers to execute arbitrary code via a crafted RV10 RealVideo video stream.Show less
CVE-2012-0925 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Feb 8, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 Unspecified vulnerability in the RV40 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted RV40 RealV...Show more Unspecified vulnerability in the RV40 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted RV40 RealVideo video stream.Show less
CVE-2012-0924 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Feb 8, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via vectors involving a VIDOBJ_START_CODE code in a header within a vid...Show more RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via vectors involving a VIDOBJ_START_CODE code in a header within a video stream.Show less
CVE-2012-0923 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Feb 8, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 The RV20 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, does not properly handle the frame size array, which allows remote attackers to execute arbitrary code...Show more The RV20 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, does not properly handle the frame size array, which allows remote attackers to execute arbitrary code via a crafted RV20 RealVideo video stream.Show less
CVE-2012-0922 1Realnetworks 2Realplayer Realplayer Sp Apr 29, 2026 Feb 8, 2012 N/A· v4 N/A· v3 9.3 HIGH· v2 rvrender.dll in RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via crafted flags in an RMFF file.
CVE-2011-4262 1Realnetworks 1Realplayer Apr 29, 2026 Nov 24, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 Unspecified vulnerability in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted MP4 file.
CVE-2011-4261 1Realnetworks 1Realplayer Apr 29, 2026 Nov 24, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted video dimensions in an MP4 file.
CVE-2011-4260 1Realnetworks 1Realplayer Apr 29, 2026 Nov 24, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a malformed header in an MP4 file.
CVE-2011-4259 1Realnetworks 1Realplayer Apr 29, 2026 Nov 24, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 Integer underflow in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted width value in an MPG file.
CVE-2011-4258 1Realnetworks 1Realplayer Apr 29, 2026 Nov 24, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted length of an MLTI chunk in an IVR file.
CVE-2011-4257 1Realnetworks 1Realplayer Apr 29, 2026 Nov 24, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 The Cook codec in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via crafted channel data.
CVE-2011-4256 1Realnetworks 1Realplayer Apr 29, 2026 Nov 24, 2011 N/A· v4 N/A· v3 10.0 HIGH· v2 The RV30 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 does not initialize an unspecified index value, which allows remote attackers to execute arbitrary code via unknown vectors.
CVE-2011-4255 1Realnetworks 1Realplayer Apr 29, 2026 Nov 24, 2011 N/A· v4 N/A· v3 10.0 HIGH· v2 Unspecified vulnerability in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via an invalid codec name.

Previous 123 4 5...9 Next