Published: 25/01/2010 Updated: 10/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Heap-based buffer overflow in RealNetworks RealPlayer 10; RealPlayer 10.5 6.0.12.1040 up to and including 6.0.12.1741; RealPlayer 11 11.0.0 up to and including 11.0.4; RealPlayer Enterprise; Mac RealPlayer 10, 10.1, and 11.0; Linux RealPlayer 10; and Helix Player 10.x allows remote malicious users to execute arbitrary code via an SIPR codec field with a small length value that triggers incorrect memory allocation.

Vulnerable Product	Search on Vulmon	Subscribe to Product
realnetworks realplayer_sp 1.0.0
realnetworks realplayer_sp 1.0.1
realnetworks realplayer 10.5
realnetworks realplayer 10.0
realnetworks realplayer 11.0.5
realnetworks realplayer 11.0
realnetworks realplayer 11.0.3
realnetworks realplayer 11.0.4
realnetworks realplayer 11.0.1
realnetworks realplayer 11.0.2
realnetworks realplayer_enterprise
realnetworks realplayer 10.1
realnetworks helix player 11.0.1
realnetworks helix player 11.0.0
realnetworks realplayer 11.0.0
realnetworks helix player 10.0

CWE-119 http://www.vupen.com/english/advisories/2010/0178 http://www.zerodayinitiative.com/advisories/ZDI-10-008/http://secunia.com/advisories/38218 http://www.securityfocus.com/bid/37880 http://service.real.com/realplayer/security/01192010_player/en/http://securitytracker.com/id?1023489 https://exchange.xforce.ibmcloud.com/vulnerabilities/55797 http://www.securityfocus.com/archive/1/509098/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-4244

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect