CVE-2010-2579

RealNetworks RealPlayer <11.1 - Memory Corruption

Title source: llm

Description

The cook codec in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, Mac RealPlayer 11.0 through 11.1, and Linux RealPlayer 11.0.2.1744 does not properly initialize the number of channels, which allows attackers to obtain unspecified "memory access" via unknown vectors.

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1024861

Vendor Advisory x_refsource_confirm

http://service.real.com/realplayer/security/12102010_player/en/

Scores

EPSS 0.0024

EPSS Percentile 46.7%

Details

Status published

Products (17)

realnetworks/realplayer 11.0

realnetworks/realplayer 11.0.1

realnetworks/realplayer 11.0.2

realnetworks/realplayer 11.0.3

realnetworks/realplayer 11.0.4

realnetworks/realplayer 11.0.5

realnetworks/realplayer 11.1

realnetworks/realplayer 11.0.2.1744

realnetworks/realplayer_sp 1.0.0

realnetworks/realplayer_sp 1.0.1

... and 7 more

Published Dec 14, 2010

Tracked Since Feb 18, 2026