SB2011112401 - Multiple vulnerabilities in RealNetworks RealPlayer
Published: November 24, 2011 Updated: August 11, 2020
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 19 secuirty vulnerabilities.
1) Code Injection (CVE-ID: CVE-2011-4256)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
The RV30 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 does not initialize an unspecified index value, which allows remote attackers to execute arbitrary code via unknown vectors.
2) Code Injection (CVE-ID: CVE-2011-4257)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
The Cook codec in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via crafted channel data.
3) Code Injection (CVE-ID: CVE-2011-4258)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted length of an MLTI chunk in an IVR file.
4) Input validation error (CVE-ID: CVE-2011-4259)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Integer underflow in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted width value in an MPG file.
5) Code Injection (CVE-ID: CVE-2011-4260)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a malformed header in an MP4 file.
6) Buffer overflow (CVE-ID: CVE-2011-4261)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted video dimensions in an MP4 file.
7) Input validation error (CVE-ID: CVE-2011-4262)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Unspecified vulnerability in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted MP4 file.
8) Buffer overflow (CVE-ID: CVE-2011-4246)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
The AAC codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
9) Code Injection (CVE-ID: CVE-2011-4247)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted QCELP stream.
10) Code Injection (CVE-ID: CVE-2011-4248)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a malformed AAC file.
11) Input validation error (CVE-ID: CVE-2011-4249)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Array index error in the RV30 codec in RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via unspecified vectors.
12) Input validation error (CVE-ID: CVE-2011-4250)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Unspecified vulnerability in the ATRC codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via unknown vectors.
13) Code Injection (CVE-ID: CVE-2011-4251)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted sample size in a RealAudio file.
14) Code Injection (CVE-ID: CVE-2011-4252)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
The RV10 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via a crafted sample height.
15) Input validation error (CVE-ID: CVE-2011-4253)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Unspecified vulnerability in the RV20 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via unknown vectors.
16) Code Injection (CVE-ID: CVE-2011-4254)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
RealNetworks RealPlayer before 15.0.0 allows remote attackers to execute arbitrary code via a crafted RTSP SETUP request.
17) Input validation error (CVE-ID: CVE-2011-4255)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Unspecified vulnerability in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code via an invalid codec name.
18) Heap-based buffer overflow (CVE-ID: CVE-2011-4244)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in Heap-based buffer overflow in the RealVideo renderer in RealNetworks RealPlayer before 15.0.0. A remote attacker can use unspecified vectors. to trigger heap-based buffer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
19) Buffer overflow (CVE-ID: CVE-2011-4245)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
The RealVideo renderer in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
Remediation
Cybersecurity Help is not aware of any official remediation provided by the vendor.