Published: 08/02/2012 Updated: 29/08/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

rvrender.dll in RealNetworks RealPlayer 11.x, 14.x, and 15.x prior to 15.02.71, and RealPlayer SP 1.0 up to and including 1.1.5, allows remote malicious users to execute arbitrary code via crafted flags in an RMFF file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
realnetworks realplayer 14.0.1.633
realnetworks realplayer 14.0.2
realnetworks realplayer 14.0.0
realnetworks realplayer 14.0.1
realnetworks realplayer 14.0.1.609
realnetworks realplayer 14.0.6
realnetworks realplayer 14.0.7
realnetworks realplayer 14.0.3
realnetworks realplayer 14.0.4
realnetworks realplayer 14.0.5
realnetworks realplayer 11.0.2
realnetworks realplayer 11.0.3
realnetworks realplayer 11.0
realnetworks realplayer 11.1
realnetworks realplayer 11.0.1
realnetworks realplayer 11_build_6.0.14.748
realnetworks realplayer 11.1.3
realnetworks realplayer 11.0.2.2315
realnetworks realplayer 11.0.2.1744
realnetworks realplayer 11.0.4
realnetworks realplayer 11.0.5
realnetworks realplayer 15.0.1.13
realnetworks realplayer 15.0.0
realnetworks realplayer sp 1.0.2
realnetworks realplayer sp 1.0.5
realnetworks realplayer sp 1.1
realnetworks realplayer sp 1.0.0
realnetworks realplayer sp 1.0.1
realnetworks realplayer sp 1.1.5
realnetworks realplayer sp 1.1.3
realnetworks realplayer sp 1.1.4
realnetworks realplayer sp 1.1.1
realnetworks realplayer sp 1.1.2

CWE-94 http://service.real.com/realplayer/security/02062012_player/en/http://www.securityfocus.com/bid/51883 http://secunia.com/advisories/47896 http://osvdb.org/78911 https://exchange.xforce.ibmcloud.com/vulnerabilities/73018 https://nvd.nist.gov

CVE-2012-0922

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect