GCVE - cpe:2.3:a:realnetworks:realplayer:10.0.0.305:*:mac

Approved changes feed: RSS · Atom

cpe:2.3:a:realnetworks:realplayer:10.0.0.305:*:mac_os:*:*:*:*:*

part: a version: 10.0.0.305 update: *

Vendor	Realnetworks (`944b0662-a257-59bc-8fc3-d9f6c6d401e0`)
Product	Realplayer (`51c5929e-545a-5233-af39-c6f980255b80`)
Edition	mac_os
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2011-4256`	vulnerable	2026-06-03 14:31:23.587868	Details available The RV30 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 does not initialize an unspecified index value, which allows remote attackers to execute arbitrary code via unknown vectors. Published: 2011-11-24T11:00:00.000Z Updated: 2024-09-16T18:43:41.896Z Open on db.gcve.eu Reference links http://service.real.com/realplayer/security/11182011_player/en/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-4255`	vulnerable	2026-06-03 14:31:23.586835	Details available Unspecified vulnerability in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via an invalid codec name. Published: 2011-11-24T11:00:00.000Z Updated: 2024-09-16T23:56:04.028Z Open on db.gcve.eu Reference links http://service.real.com/realplayer/security/11182011_player/en/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-4253`	vulnerable	2026-06-03 14:31:23.584885	Details available Unspecified vulnerability in the RV20 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via unknown vectors. Published: 2011-11-24T11:00:00.000Z Updated: 2024-09-17T04:09:08.302Z Open on db.gcve.eu Reference links http://service.real.com/realplayer/security/11182011_player/en/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-4252`	vulnerable	2026-06-03 14:31:23.583786	Details available The RV10 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via a crafted sample height. Published: 2011-11-24T11:00:00.000Z Updated: 2024-09-17T01:05:38.988Z Open on db.gcve.eu Reference links http://service.real.com/realplayer/security/11182011_player/en/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-4250`	vulnerable	2026-06-03 14:31:23.581862	Details available Unspecified vulnerability in the ATRC codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via unknown vectors. Published: 2011-11-24T11:00:00.000Z Updated: 2024-09-16T22:03:36.840Z Open on db.gcve.eu Reference links http://service.real.com/realplayer/security/11182011_player/en/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-4246`	vulnerable	2026-06-03 14:31:23.578086	Details available The AAC codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. Published: 2011-11-24T11:00:00.000Z Updated: 2024-09-16T19:19:20.805Z Open on db.gcve.eu Reference links http://service.real.com/realplayer/security/11182011_player/en/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-4245`	vulnerable	2026-06-03 14:31:23.575015	Details available The RealVideo renderer in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. Published: 2011-11-24T11:00:00.000Z Updated: 2024-09-16T17:29:02.686Z Open on db.gcve.eu Reference links http://service.real.com/realplayer/security/11182011_player/en/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-2922`	vulnerable	2026-06-03 14:27:03.583072	Details available Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player allows remote malicious servers to cause a denial of service (crash) and possibly execute arbitrary code via a chunked Transfer-Encoding HTTP response in which either (1) the chunk header length is specified as -1, (2) the chunk header with a length that is less than the actual amount of sent data, or (3) a missing chunk header. Published: 2006-03-23T23:00:00.000Z Updated: 2024-08-07T22:53:29.699Z Open on db.gcve.eu Reference links http://www.service.real.com/realplayer/security/03162006_player/en/ http://secunia.com/advisories/19358 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11444 http://www.novell.com/linux/security/advisories/2006_18_realplayer.html http://www.vupen.com/english/advisories/2006/1057	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Realplayer

PURL mappings

Vulnerability references

Contribute