Vulnerabilities > CVE-2005-4126 - Remote Code Execution vulnerability in Real Networks RealPlayer

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

realnetworks

NVD

Published: 2005-12-09

Updated: 2008-09-05

Summary

** UNVERIFIABLE, PRERELEASE ** NOTE: this issue describes a problem that can not be independently verified as of 20051208. Unspecified vulnerability in unspecified versions of Real Networks RealPlayer allows attackers to execute arbitrary code. NOTE: the information regarding this issue is extremely vague and does not provide any verifiable information. It has been posted by a reliable reporter with a prerelease disclosure policy. This item has only been assigned a CVE identifier for tracking purposes, and to serve as a concrete example for discussion of the newly emerging UNVERIFIABLE and PRERELEASE content decisions in CVE, which must be discussed by the Editorial Board. Without additional details or independent verification by reliable sources, it is possible that this item might be RECAST or REJECTED.

Vulnerable Configurations

Part	Description	Count
Application	Realnetworks Realnetworks Realplayer 6.0 Realnetworks Realplayer 7.0 Realnetworks Realplayer 8.0 Realnetworks Realplayer 10.0 Realnetworks Realplayer 10.0_6.0.12.690 Realnetworks Realplayer 10.0_Beta Realnetworks Realplayer 10.5 Realnetworks Realplayer 10.5_6.0.12.1016_Beta Realnetworks Realplayer 10.5_6.0.12.1040 Realnetworks Realplayer 10.5_6.0.12.1053 Realnetworks Realplayer 10.5_6.0.12.1056 Realnetworks Realplayer 10.5_6.0.12.1059 Realnetworks Realplayer 10.5_6.0.12.1069 Realnetworks Realplayer 10.5_6.0.12.1235	14

Summary

Vulnerable Configurations

References