CVE-2012-5690

RealNetworks RealPlayer <16.0.0.282-1.1.5 - RCE

Title source: llm
STIX 2.1

Description

RealNetworks RealPlayer before 16.0.0.282 and RealPlayer SP 1.0 through 1.1.5 allow remote attackers to execute arbitrary code via a RealAudio file that triggers access to an invalid pointer.

References (1)

Core 1
Core References

Scores

EPSS 0.0338
EPSS Percentile 87.5%

Details

CWE
CWE-94
Status published
Products (44)
realnetworks/realplayer 4
realnetworks/realplayer 5
realnetworks/realplayer 6
realnetworks/realplayer 7
realnetworks/realplayer 8
realnetworks/realplayer 10.0
realnetworks/realplayer 10.5
realnetworks/realplayer 11.0
realnetworks/realplayer 11.0.1
realnetworks/realplayer 11.0.2
... and 34 more
Published Dec 19, 2012
Tracked Since Feb 18, 2026