GCVE - cpe:2.3:a:realnetworks:helix_player:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:realnetworks:helix_player:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Realnetworks (`944b0662-a257-59bc-8fc3-d9f6c6d401e0`)
Product	Helix Player (`b89b7591-aa73-5781-96da-47104ef08fcb`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-0323`	vulnerable	2026-06-03 14:27:20.474190	Details available Buffer overflow in swfformat.dll in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, Rhapsody 3, and Helix Player allows remote attackers to execute arbitrary code via a crafted SWF (Flash) file with (1) a size value that is less than the actual size, or (2) other unspecified manipulations. Published: 2006-03-23T23:00:00.000Z Updated: 2024-08-07T16:34:13.867Z Open on db.gcve.eu Reference links http://www.service.real.com/realplayer/security/03162006_player/en/ http://secunia.com/advisories/19358 http://www.novell.com/linux/security/advisories/2006_18_realplayer.html http://secunia.com/advisories/19362 http://www.vupen.com/english/advisories/2006/1057	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-2710`	vulnerable	2026-06-03 14:27:03.056162	Details available Format string vulnerability in Real HelixPlayer and RealPlayer 10 allows remote attackers to execute arbitrary code via the (1) image handle or (2) timeformat attribute in a RealPix (.rp) or RealText (.rt) file. Published: 2005-09-27T04:00:00.000Z Updated: 2024-08-07T22:45:01.897Z Open on db.gcve.eu Reference links http://secunia.com/advisories/17127 http://www.kb.cert.org/vuls/id/361181 http://www.gentoo.org/security/en/glsa/glsa-200510-07.xml http://www.debian.org/security/2005/dsa-826 http://securityreason.com/securityalert/27	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-0755`	vulnerable	2026-06-03 14:26:51.489836	Details available Heap-based buffer overflow in RealPlayer 10 and earlier, Helix Player before 10.0.4, and RealOne Player v1 and v2 allows remote attackers to execute arbitrary code via a long hostname in a RAM file. Published: 2005-04-21T04:00:00.000Z Updated: 2024-08-07T21:28:27.188Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2005-392.html http://www.redhat.com/support/errata/RHSA-2005-363.html http://www.redhat.com/archives/fedora-announce-list/2005-April/msg00040.html http://marc.info/?l=bugtraq&m=111401615202987&w=2 http://service.real.com/help/faq/security/050419_player/EN/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-0611`	vulnerable	2026-06-03 14:26:51.072448	Details available Heap-based buffer overflow in RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1, allows remote attackers to execute arbitrary code via .WAV files. Published: 2005-03-02T05:00:00.000Z Updated: 2024-08-07T21:21:06.417Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2005-271.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11419 http://service.real.com/help/faq/security/050224_player/EN/ http://www.redhat.com/support/errata/RHSA-2005-265.html http://marc.info/?l=bugtraq&m=110979465912834&w=2	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.