RealNetworks RealPlayer 2.1.3 Enterprise
Approved changes feed: RSS · Atom
cpe:2.3:a:realnetworks:realplayer:2.1.3:*:enterprise:*:*:*:*:*
part: a version: 2.1.3 update: *
| Vendor | Realnetworks (944b0662-a257-59bc-8fc3-d9f6c6d401e0) |
|---|---|
| Product | Realplayer (51c5929e-545a-5233-af39-c6f980255b80) |
| Edition | enterprise |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2013-7260 |
vulnerable | 2026-06-03 14:33:34.394953 |
Details available
Multiple stack-based buffer overflows in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allow remote attackers to execute arbitrary code via a long (1) version number or (2) encoding declaration in the XML declaration of an RMP file, a different issue than CVE-2013-6877.
Published: 2014-01-03T20:00:00.000Z
Updated: 2024-08-06T18:01:20.225Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-3234 |
vulnerable | 2026-06-03 14:31:56.926724 |
Details available
RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 do not properly handle codec frame sizes in RealAudio files, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) or possibly have unspecified other impact via a crafted file.
Published: 2012-09-12T10:00:00.000Z
Updated: 2024-08-06T19:57:50.255Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-2410 |
vulnerable | 2026-06-03 14:31:53.163567 |
Details available
Buffer overflow in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted RealMedia file, a different vulnerability than CVE-2012-2409.
Published: 2012-09-12T10:00:00.000Z
Updated: 2024-08-06T19:34:25.309Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-2409 |
vulnerable | 2026-06-03 14:31:53.162401 |
Details available
Buffer overflow in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted RealMedia file, a different vulnerability than CVE-2012-2410.
Published: 2012-09-12T10:00:00.000Z
Updated: 2024-08-06T19:34:25.187Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-2408 |
vulnerable | 2026-06-03 14:31:53.161095 |
Details available
The AAC SDK in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted AAC file that is not properly handled during decoding.
Published: 2012-09-12T10:00:00.000Z
Updated: 2024-08-06T19:34:25.814Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2012-2407 |
vulnerable | 2026-06-03 14:31:53.153207 |
Details available
Buffer overflow in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted AAC file that is not properly handled during stream-data unpacking.
Published: 2012-09-12T10:00:00.000Z
Updated: 2024-08-06T19:34:24.304Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2955 |
vulnerable | 2026-06-03 14:31:11.428407 |
Details available
Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5, when an Embedded RealPlayer is used, allows remote attackers to execute arbitrary code via vectors related to a modal dialog.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:32.095Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2953 |
vulnerable | 2026-06-03 14:31:11.427014 |
Details available
An unspecified ActiveX control in the browser plugin in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via unknown vectors, related to an out-of-bounds condition.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:31.942Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2952 |
vulnerable | 2026-06-03 14:31:11.426249 |
Details available
Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via vectors related to a dialog box.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:31.942Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2949 |
vulnerable | 2026-06-03 14:31:11.424038 |
Details available
Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via crafted ID3v2 tags in an MP3 file.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:31.953Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2948 |
vulnerable | 2026-06-03 14:31:11.414772 |
Details available
RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, RealPlayer Enterprise 2.0 through 2.1.5, and Mac RealPlayer 12.0.0.1569 do not properly handle DEFINEFONT fields in SWF files, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted file.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:31.991Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2946 |
vulnerable | 2026-06-03 14:31:11.413244 |
Details available
Unspecified vulnerability in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via unknown vectors.
Published: 2011-08-18T23:00:00.000Z
Updated: 2024-08-06T23:15:32.055Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-1221 |
vulnerable | 2026-06-03 14:30:59.727506 |
Details available
Cross-zone scripting vulnerability in the RealPlayer ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to inject arbitrary web script or HTML in the Local Zone via a local HTML document, a different vulnerability than CVE-2011-2947.
Published: 2011-10-04T22:00:00.000Z
Updated: 2024-09-17T02:32:51.446Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-0694 |
vulnerable | 2026-06-03 14:30:50.628642 |
Details available
RealNetworks RealPlayer 11.0 through 11.1, SP 1.0 through 1.1.5, and 14.0.0 through 14.0.1, and Enterprise 2.0 through 2.1.4, uses predictable names for temporary files, which allows remote attackers to conduct cross-domain scripting attacks and execute arbitrary code via the OpenURLinPlayerBrowser function.
Published: 2011-02-21T17:00:00.000Z
Updated: 2024-08-06T21:58:26.094Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-4392 |
vulnerable | 2026-06-03 14:30:41.334901 |
Details available
Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, RealPlayer Enterprise 2.1.2 and 2.1.3, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.0.6 and other versions, allows remote attackers to execute arbitrary code via crafted ImageMap data in a RealMedia file, related to certain improper integer calculations.
Published: 2010-12-14T15:00:00.000Z
Updated: 2024-08-07T03:43:14.826Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-4391 |
vulnerable | 2026-06-03 14:30:41.334132 |
Details available
Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.1.2 and 2.1.3 allows remote attackers to execute arbitrary code via a crafted value in an unspecified header field in an RMX file.
Published: 2010-12-14T15:00:00.000Z
Updated: 2024-08-07T03:43:14.547Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-4388 |
vulnerable | 2026-06-03 14:30:41.332063 |
Details available
The (1) Upsell.htm, (2) Main.html, and (3) Custsupport.html components in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.1.2 and 2.1.3 allow remote attackers to inject code into the RealOneActiveXObject process, and consequently bypass intended Local Machine Zone restrictions and load arbitrary ActiveX controls, via unspecified vectors.
Published: 2010-12-14T15:00:00.000Z
Updated: 2024-08-07T03:43:14.720Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2010-4378 |
vulnerable | 2026-06-03 14:30:41.324827 |
Details available
The drv2.dll (aka RV20 decompression) module in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, RealPlayer Enterprise 2.1.2 and 2.1.3, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.0.6 and other versions, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted value of an unspecified length field in an RV20 video stream.
Published: 2010-12-14T15:00:00.000Z
Updated: 2024-08-07T03:43:14.669Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.