CVE Vulnerabilities

CVE-2011-4259

Published: Nov 24, 2011 | Modified: Mar 08, 2012
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Integer underflow in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted width value in an MPG file.

Affected Software

Name Vendor Start Version End Version
Realplayer Realnetworks * 14.0.7 (including)
Realplayer Realnetworks 4 (including) 4 (including)
Realplayer Realnetworks 5 (including) 5 (including)
Realplayer Realnetworks 6 (including) 6 (including)
Realplayer Realnetworks 7 (including) 7 (including)
Realplayer Realnetworks 8 (including) 8 (including)
Realplayer Realnetworks 10.0 (including) 10.0 (including)
Realplayer Realnetworks 10.5 (including) 10.5 (including)
Realplayer Realnetworks 11.0 (including) 11.0 (including)
Realplayer Realnetworks 11.0.1 (including) 11.0.1 (including)
Realplayer Realnetworks 11.0.2 (including) 11.0.2 (including)
Realplayer Realnetworks 11.0.2.1744 (including) 11.0.2.1744 (including)
Realplayer Realnetworks 11.0.2.2315 (including) 11.0.2.2315 (including)
Realplayer Realnetworks 11.0.3 (including) 11.0.3 (including)
Realplayer Realnetworks 11.0.4 (including) 11.0.4 (including)
Realplayer Realnetworks 11.0.5 (including) 11.0.5 (including)
Realplayer Realnetworks 11.1 (including) 11.1 (including)
Realplayer Realnetworks 11.1.3 (including) 11.1.3 (including)
Realplayer Realnetworks 11_build_6.0.14.748 (including) 11_build_6.0.14.748 (including)
Realplayer Realnetworks 12.0.0.1444 (including) 12.0.0.1444 (including)
Realplayer Realnetworks 12.0.0.1548 (including) 12.0.0.1548 (including)
Realplayer Realnetworks 14.0.0 (including) 14.0.0 (including)
Realplayer Realnetworks 14.0.1 (including) 14.0.1 (including)
Realplayer Realnetworks 14.0.1.609 (including) 14.0.1.609 (including)
Realplayer Realnetworks 14.0.1.633 (including) 14.0.1.633 (including)
Realplayer Realnetworks 14.0.2 (including) 14.0.2 (including)
Realplayer Realnetworks 14.0.3 (including) 14.0.3 (including)
Realplayer Realnetworks 14.0.4 (including) 14.0.4 (including)
Realplayer Realnetworks 14.0.5 (including) 14.0.5 (including)
Realplayer Realnetworks 14.0.6 (including) 14.0.6 (including)

References