Realarcade Installer
Approved changes feed: RSS · Atom
cpe:2.3:a:realnetworks:realarcade_installer:2.6.0.481:*:*:*:*:*:*:*
part: a version: 2.6.0.481 update: *
| Vendor | Realnetworks (944b0662-a257-59bc-8fc3-d9f6c6d401e0) |
|---|---|
| Product | Realarcade Installer (634b8cd4-6612-5348-81db-fd9b82b75a97) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2013-2604 |
vulnerable | 2026-06-03 14:33:03.124179 |
Details available
RealNetworks GameHouse RealArcade Installer (aka ActiveMARK Game Installer) 2.6.0.481 and 3.0.7 uses weak permissions (Create Files/Write Data) for the GameHouse Games directory tree, which allows local users to gain privileges via a Trojan horse DLL in an individual game's directory, as demonstrated by DDRAW.DLL in the Zuma Deluxe directory.
Published: 2015-01-12T19:00:00.000Z
Updated: 2024-08-06T15:44:32.183Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-2603 |
vulnerable | 2026-06-03 14:33:03.123783 |
Details available
The RACInstaller.StateCtrl.1 ActiveX control in InstallerDlg.dll in RealNetworks GameHouse RealArcade Installer 2.6.0.481 performs unexpected type conversions for invalid parameter types, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via crafted arguments to the (1) AddTag, (2) Ping, (3) QueuePause, (4) QueueRemove, (5) QueueTop, (6) RemoveTag, (7) TagRemoved, or (8) message method.
Published: 2015-01-12T19:00:00.000Z
Updated: 2024-08-06T15:44:32.288Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.