First published: Mon Jan 25 2010(Updated: )
RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allow remote attackers to have an unspecified impact via a crafted media file that uses HTTP chunked transfer coding, related to an "overflow."
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
RealPlayer | =11.0.1 | |
RealNetworks Helix Player Linux | =11.0.1 | |
RealPlayer | =10.0 | |
RealNetworks Helix Player Linux | =11.0.0 | |
RealNetworks Helix Player Linux | =10.0 | |
RealPlayer | =11.0.0 | |
RealPlayer | =10.0 | |
RealPlayer | =10.5 | |
RealPlayer | =11.0 | |
RealPlayer | =11.0.1 | |
RealPlayer | =11.0.2 | |
RealPlayer | =11.0.3 | |
RealPlayer | =11.0.4 | |
RealPlayer | =11.0.5 | |
RealPlayer | ||
RealPlayer | =1.0.0 | |
RealPlayer | =1.0.1 | |
Microsoft Windows Operating System | ||
RealPlayer | =10.1 | |
Apple iOS and macOS |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2009-4243 has been classified as a vulnerability allowing remote attackers to exploit crafted media files.
To fix CVE-2009-4243, update RealPlayer to the latest available version provided by RealNetworks.
CVE-2009-4243 affects RealPlayer versions 10, 10.5, 11.0.0 through 11.0.4, and certain versions of Helix Player.
CVE-2009-4243 may allow remote attackers to execute arbitrary code through crafted media files.
CVE-2009-4243 specifically affects Linux and certain versions of RealPlayer but does not impact macOS and Windows systems.