CVE-2012-0924

RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via vectors involving a VIDOBJ_START_CODE code in a header within a video stream.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:realnetworks:realplayer:14.0.4:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:14.0.5:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:14.0.1.633:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:14.0.2:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:14.0.3:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:14.0.0:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:14.0.1:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:14.0.1.609:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:14.0.6:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:14.0.7:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:realnetworks:realplayer:11.0.4:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11.0.5:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11.0.2:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11.0.3:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11.0:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11.1:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11.0.1:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11_build_6.0.14.748:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11.1.3:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11.0.2.2315:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:11.0.2.1744:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:realnetworks:realplayer:15.0.0:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:15.0.1.13:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:a:realnetworks:realplayer_sp:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer_sp:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer_sp:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer_sp:1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer_sp:1.1:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer_sp:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer_sp:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer_sp:1.1.5:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer_sp:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer_sp:1.1.4:*:*:*:*:*:*:*

Information

Published : 2012-02-08 07:55

Updated : 2012-02-24 20:21


NVD link : CVE-2012-0924

Mitre link : CVE-2012-0924


JSON object : View

CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')

Advertisement

dedicated server usa

Products Affected

realnetworks

  • realplayer_sp
  • realplayer