GCVE - cpe:2.3:a:realnetworks:helix_player:10.0.1:*:linux:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:realnetworks:helix_player:10.0.1:*:linux:*:*:*:*:*

part: a version: 10.0.1 update: *

Vendor	Realnetworks (`944b0662-a257-59bc-8fc3-d9f6c6d401e0`)
Product	Helix Player (`b89b7591-aa73-5781-96da-47104ef08fcb`)
Edition	linux
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2005-2922`	vulnerable	2026-06-03 14:27:03.576636	Details available Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player allows remote malicious servers to cause a denial of service (crash) and possibly execute arbitrary code via a chunked Transfer-Encoding HTTP response in which either (1) the chunk header length is specified as -1, (2) the chunk header with a length that is less than the actual amount of sent data, or (3) a missing chunk header. Published: 2006-03-23T23:00:00.000Z Updated: 2024-08-07T22:53:29.699Z Open on db.gcve.eu Reference links http://www.service.real.com/realplayer/security/03162006_player/en/ http://secunia.com/advisories/19358 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11444 http://www.novell.com/linux/security/advisories/2006_18_realplayer.html http://www.vupen.com/english/advisories/2006/1057	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.