The RV10 codec in RealNetworks RealPlayer 11.x, 14.x, and 15.x prior to 15.02.71, and RealPlayer SP 1.0 up to and including 1.1.5, does not properly handle height and width values, which allows remote malicious users to execute arbitrary code via a crafted RV10 RealVideo video stream.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
realnetworks realplayer 14.0.1.633 |
||
realnetworks realplayer 14.0.2 |
||
realnetworks realplayer 14.0.0 |
||
realnetworks realplayer 14.0.1 |
||
realnetworks realplayer 14.0.7 |
||
realnetworks realplayer 14.0.1.609 |
||
realnetworks realplayer 14.0.5 |
||
realnetworks realplayer 14.0.6 |
||
realnetworks realplayer 14.0.3 |
||
realnetworks realplayer 14.0.4 |
||
realnetworks realplayer 11.0.1 |
||
realnetworks realplayer 11.0.2 |
||
realnetworks realplayer 11.0.3 |
||
realnetworks realplayer 11.0 |
||
realnetworks realplayer 11.1 |
||
realnetworks realplayer 11_build_6.0.14.748 |
||
realnetworks realplayer 11.1.3 |
||
realnetworks realplayer 11.0.2.2315 |
||
realnetworks realplayer 11.0.2.1744 |
||
realnetworks realplayer 11.0.4 |
||
realnetworks realplayer 11.0.5 |
||
realnetworks realplayer 15.0.1.13 |
||
realnetworks realplayer 15.0.0 |
||
realnetworks realplayer sp 1.0.2 |
||
realnetworks realplayer sp 1.0.5 |
||
realnetworks realplayer sp 1.0.0 |
||
realnetworks realplayer sp 1.0.1 |
||
realnetworks realplayer sp 1.1.4 |
||
realnetworks realplayer sp 1.1.5 |
||
realnetworks realplayer sp 1.1.2 |
||
realnetworks realplayer sp 1.1.3 |
||
realnetworks realplayer sp 1.1 |
||
realnetworks realplayer sp 1.1.1 |
Vulmon