Realplayer
Approved changes feed: RSS · Atom
cpe:2.3:a:realnetworks:realplayer:2.0:*:enterprise:*:*:*:*:*
part: a version: 2.0 update: *
| Vendor | Realnetworks (944b0662-a257-59bc-8fc3-d9f6c6d401e0) |
|---|---|
| Product | Realplayer (51c5929e-545a-5233-af39-c6f980255b80) |
| Edition | enterprise |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2011-2955 |
vulnerable | 2026-06-03 14:31:11.428359 |
Details available
Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5, when an Embedded RealPlayer is used, allows remote attackers to execute arbitrary code via vectors related to a modal dialog.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:32.095Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2953 |
vulnerable | 2026-06-03 14:31:11.426969 |
Details available
An unspecified ActiveX control in the browser plugin in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via unknown vectors, related to an out-of-bounds condition.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:31.942Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2952 |
vulnerable | 2026-06-03 14:31:11.426187 |
Details available
Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via vectors related to a dialog box.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:31.942Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2949 |
vulnerable | 2026-06-03 14:31:11.424006 |
Details available
Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via crafted ID3v2 tags in an MP3 file.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:31.953Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2948 |
vulnerable | 2026-06-03 14:31:11.414739 |
Details available
RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, RealPlayer Enterprise 2.0 through 2.1.5, and Mac RealPlayer 12.0.0.1569 do not properly handle DEFINEFONT fields in SWF files, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted file.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:31.991Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2946 |
vulnerable | 2026-06-03 14:31:11.413209 |
Details available
Unspecified vulnerability in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via unknown vectors.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:32.055Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-1221 |
vulnerable | 2026-06-03 14:30:59.725952 |
Details available
Cross-zone scripting vulnerability in the RealPlayer ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to inject arbitrary web script or HTML in the Local Zone via a local HTML document, a different vulnerability than CVE-2011-2947.
Published: 2011-10-04T22:00:00.000Z
Updated: 2024-09-17T02:32:51.446Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-0694 |
vulnerable | 2026-06-03 14:30:50.627892 |
Details available
RealNetworks RealPlayer 11.0 through 11.1, SP 1.0 through 1.1.5, and 14.0.0 through 14.0.1, and Enterprise 2.0 through 2.1.4, uses predictable names for temporary files, which allows remote attackers to conduct cross-domain scripting attacks and execute arbitrary code via the OpenURLinPlayerBrowser function.
Published: 2011-02-21T17:00:00.000Z
Updated: 2024-08-06T21:58:26.094Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.