The RV20 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x prior to 15.02.71, and RealPlayer SP 1.0 up to and including 1.1.5, does not properly handle the frame size array, which allows remote malicious users to execute arbitrary code via a crafted RV20 RealVideo video stream.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
realnetworks realplayer 14.0.5 |
||
realnetworks realplayer 14.0.6 |
||
realnetworks realplayer 14.0.3 |
||
realnetworks realplayer 14.0.4 |
||
realnetworks realplayer 14.0.1.633 |
||
realnetworks realplayer 14.0.2 |
||
realnetworks realplayer 14.0.1.609 |
||
realnetworks realplayer 14.0.0 |
||
realnetworks realplayer 14.0.1 |
||
realnetworks realplayer 14.0.7 |
||
realnetworks realplayer 11.0.5 |
||
realnetworks realplayer 11.0.2.2315 |
||
realnetworks realplayer 11.0.3 |
||
realnetworks realplayer 11.0.4 |
||
realnetworks realplayer 11.1 |
||
realnetworks realplayer 11.0.1 |
||
realnetworks realplayer 11.0.2 |
||
realnetworks realplayer 11.1.3 |
||
realnetworks realplayer 11.0 |
||
realnetworks realplayer 11.0.2.1744 |
||
realnetworks realplayer 11_build_6.0.14.748 |
||
realnetworks realplayer 15.0.0 |
||
realnetworks realplayer 15.0.1.13 |
||
realnetworks realplayer sp 1.1.2 |
||
realnetworks realplayer sp 1.1.3 |
||
realnetworks realplayer sp 1.1 |
||
realnetworks realplayer sp 1.1.1 |
||
realnetworks realplayer sp 1.0.2 |
||
realnetworks realplayer sp 1.0.5 |
||
realnetworks realplayer sp 1.0.0 |
||
realnetworks realplayer sp 1.0.1 |
||
realnetworks realplayer sp 1.1.4 |
||
realnetworks realplayer sp 1.1.5 |
Vulmon