Vulnerabilities > Realnetworks > Realone Player > 1.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-06-29 | CVE-2005-2054 | Remote Security vulnerability in RealPlayer Unknown vulnerability in RealPlayer 10 and 10.5 (6.0.12.1040-1069) and RealOne Player v1 and v2 allows remote attackers to overwrite arbitrary files or execute arbitrary ActiveX controls via a crafted MP3 file. | 5.1 |
2005-06-28 | CVE-2005-2052 | Remote Security vulnerability in RealPlayer Heap-based buffer overflow in vidplin.dll in RealPlayer 10 and 10.5 (6.0.12.1040 through 1069), RealOne Player v1 and v2, RealPlayer 8 and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an .avi file with a modified strf structure value. | 5.1 |
2005-05-02 | CVE-2005-0611 | Unspecified vulnerability in Realnetworks Helix Player, Realone Player and Realplayer Heap-based buffer overflow in RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1, allows remote attackers to execute arbitrary code via .WAV files. | 5.1 |
2005-05-02 | CVE-2005-0455 | Stack-based buffer overflow in the CSmil1Parser::testAttributeFailed function in smlparse.cpp for RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1 allows remote attackers to execute arbitrary code via a .SMIL file with a large system-screen-size value. | 5.1 |
2005-04-19 | CVE-2005-0755 | Unspecified vulnerability in Realnetworks Helix Player, Realone Player and Realplayer Heap-based buffer overflow in RealPlayer 10 and earlier, Helix Player before 10.0.4, and RealOne Player v1 and v2 allows remote attackers to execute arbitrary code via a long hostname in a RAM file. | 5.1 |
2005-01-19 | CVE-2005-0191 | Remote Security vulnerability in RealPlayer Off-by-one buffer overflow in the processing of tags in Real Metadata Package (RMP) files in RealPlayer 10.5 (6.0.12.1040) and earlier could allow remote attackers to execute arbitrary code via a long tag. | 5.1 |
2005-01-10 | CVE-2004-1094 | Remote Stack Based Buffer Overflow vulnerability in InnerMedia DynaZip Buffer overflow in InnerMedia DynaZip DUNZIP32.dll file version 5.00.03 and earlier allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, as demonstrated using (1) a .rjs (skin) file in RealPlayer 10 through RealPlayer 10.5 (6.0.12.1053), RealOne Player 1 and 2, (2) the Restore Backup function in CheckMark Software Payroll 2004/2005 3.9.6 and earlier, (3) CheckMark MultiLedger before 7.0.2, (4) dtSearch 6.x and 7.x, (5) mcupdmgr.exe and mghtml.exe in McAfee VirusScan 10 Build 10.0.21 and earlier, (6) IBM Lotus Notes before 6.5.5, and other products. | 10.0 |
2004-12-31 | CVE-2004-1798 | Unspecified vulnerability in Realnetworks products RealOne player 6.0.11.868 allows remote attackers to execute arbitrary script in the "My Computer" zone via a Synchronized Multimedia Integration Language (SMIL) presentation with a "file:javascript:" URL, which is executed in the security context of the previously loaded URL, a different vulnerability than CVE-2003-0726. | 5.1 |
2004-12-31 | CVE-2004-1481 | Unspecified vulnerability in Realnetworks Helix Player, Realone Player and Realplayer Integer overflow in pnen3260.dll in RealPlayer 8 through 10.5 (6.0.12.1040) and earlier, and RealOne Player 1 or 2 on Windows or Mac OS, allows remote attackers to execute arbitrary code via a SMIL file and a .rm movie file with a large length field for the data chunk, which leads to a heap-based buffer overflow. | 5.1 |
2004-11-23 | CVE-2004-0273 | Path Traversal vulnerability in Realnetworks products Directory traversal vulnerability in RealOne Player, RealOne Player 2.0, and RealOne Enterprise Desktop allows remote attackers to upload arbitrary files via an RMP file that contains .. | 9.3 |