CVE-2004-0258
RealOne Player and RealPlayer Enterprise - Remote Code Execution via Malformed Media Files
Title source: llmDescription
Multiple buffer overflows in RealOne Player, RealOne Player 2.0, RealOne Enterprise Desktop, and RealPlayer Enterprise allow remote attackers to execute arbitrary code via malformed (1) .RP, (2) .RT, (3) .RAM, (4) .RPM or (5) .SMIL files.
References (8)
Core 8
Core References
Various Sources x_refsource_misc
http://www.nextgenss.com/advisories/realone.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15040
Third Party Advisory, US Government Resource third-party-advisory
government-resource
x_refsource_ciac
http://www.ciac.org/ciac/bulletins/o-075.shtml
Third Party Advisory mailing-list
x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0027.html
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/473814
Various Sources x_refsource_confirm
http://www.service.real.com/help/faq/security/040123_player/EN/
Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/9579
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107608748813559&w=2
Scores
EPSS
0.2677
EPSS Percentile
96.4%
Details
Status
published
Products (11)
realnetworks/realone_desktop_manager
realnetworks/realone_enterprise_desktop
6.0.11.774
realnetworks/realone_player
1.0
realnetworks/realone_player
2.0 (2 CPE variants)
realnetworks/realone_player
6.0.11.818
realnetworks/realone_player
6.0.11.830
realnetworks/realone_player
6.0.11.841
realnetworks/realone_player
6.0.11.853
realnetworks/realone_player
6.0.11.868
realnetworks/realplayer
8.0 (3 CPE variants)
... and 1 more
Published
Nov 23, 2004
Tracked Since
Feb 18, 2026