RealNetworks RealPlayer 15.0.5.109

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:realnetworks:realplayer:15.0.5.109:*:*:*:*:*:*:*

part: a version: 15.0.5.109 update: *

VendorRealnetworks (944b0662-a257-59bc-8fc3-d9f6c6d401e0)
ProductRealplayer (51c5929e-545a-5233-af39-c6f980255b80)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2013-7260 vulnerable 2026-06-03 14:33:34.411791 Details available
Multiple stack-based buffer overflows in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allow remote attackers to execute arbitrary code via a long (1) version number or (2) encoding declaration in the XML declaration of an RMP file, a different issue than CVE-2013-6877.
Published: 2014-01-03T20:00:00.000Z
Updated: 2024-08-06T18:01:20.225Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-4974 vulnerable 2026-06-03 14:33:20.193190 Details available
RealNetworks RealPlayer before 16.0.3.51, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed RealMedia file.
Published: 2013-08-27T01:00:00.000Z
Updated: 2024-08-06T16:59:41.216Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-4973 vulnerable 2026-06-03 14:33:20.184237 Details available
Stack-based buffer overflow in RealNetworks RealPlayer before 16.0.3.51, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted .rmp file.
Published: 2013-08-27T01:00:00.000Z
Updated: 2024-08-06T16:59:41.224Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-3299 vulnerable 2026-06-03 14:33:06.574135 Details available
RealNetworks RealPlayer 16.0.2.32 and earlier allows remote attackers to cause a denial of service (resource consumption or application crash) via an HTML document containing JavaScript code that constructs a long string.
Published: 2013-07-06T10:00:00.000Z
Updated: 2024-09-17T00:22:06.544Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-1750 vulnerable 2026-06-03 14:32:51.459571 Details available
Heap-based buffer overflow in RealNetworks RealPlayer before 16.0.1.18 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to execute arbitrary code via a malformed MP4 file.
Published: 2013-03-20T18:00:00.000Z
Updated: 2024-09-16T22:40:03.403Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2012-5691 vulnerable 2026-06-03 14:32:31.777095 Details available
Buffer overflow in RealNetworks RealPlayer before 16.0.0.282 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to execute arbitrary code via a crafted RealMedia file.
Published: 2012-12-19T11:00:00.000Z
Updated: 2024-09-16T20:32:36.375Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2012-5690 vulnerable 2026-06-03 14:32:31.769339 Details available
RealNetworks RealPlayer before 16.0.0.282 and RealPlayer SP 1.0 through 1.1.5 allow remote attackers to execute arbitrary code via a RealAudio file that triggers access to an invalid pointer.
Published: 2012-12-19T11:00:00.000Z
Updated: 2024-09-16T17:08:26.701Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2012-4987 vulnerable 2026-06-03 14:32:26.441651 Details available
Stack-based buffer overflow in RealNetworks RealPlayer 15.0.5.109 allows user-assisted remote attackers to execute arbitrary code via a crafted ZIP file that triggers incorrect processing of long pathnames by the Watch Folders feature.
Published: 2012-11-04T15:00:00.000Z
Updated: 2024-08-06T20:50:18.510Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.