CVE-2010-0125
First published: Tue Dec 14 2010(Updated: )
RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, and Mac RealPlayer 11.0 through 12.0.0.1444 do not properly parse spectral data in AAC files, which has unspecified impact and remote attack vectors.
Credit: PSIRT-CNA@flexerasoftware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| RealPlayer | =11.0 | |
| RealPlayer | =11.0.4 | |
| RealPlayer | =11.0.2 | |
| RealPlayer | =11.0.3 | |
| RealPlayer | =11.0.5 | |
| RealPlayer | =11.1 | |
| RealPlayer | =11.0.1 | |
| RealNetworks RealPlayer SP | =1.0.1 | |
| RealNetworks RealPlayer SP | =1.1.3 | |
| RealNetworks RealPlayer SP | =1.0.0 | |
| RealNetworks RealPlayer SP | =1.0.2 | |
| RealNetworks RealPlayer SP | =1.1 | |
| RealNetworks RealPlayer SP | =1.1.2 | |
| RealNetworks RealPlayer SP | =1.1.4 | |
| RealNetworks RealPlayer SP | =1.1.1 | |
| RealNetworks RealPlayer SP | =1.0.5 | |
| RealPlayer | =2.1.2 | |
| RealPlayer | =1.0.0 | |
| RealPlayer | =1.0.1 | |
| RealPlayer | =1.0.2 | |
| RealPlayer | =1.0.5 | |
| RealPlayer | =1.1 | |
| RealPlayer | =1.1.1 | |
| RealPlayer | =1.1.2 | |
| RealPlayer | =1.1.3 | |
| RealPlayer | =1.1.4 | |
| RealPlayer | =12.0.0.1444 | |
| Apple iOS and macOS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2010-0125?
The severity of CVE-2010-0125 is classified as unspecified, indicating potential risk but lacking specific details on exploitability.
How do I fix CVE-2010-0125?
To fix CVE-2010-0125, users should update their RealPlayer software to a version that addresses this vulnerability.
Which versions of RealPlayer are affected by CVE-2010-0125?
CVE-2010-0125 affects RealPlayer versions 11.0 through 11.1, RealPlayer SP versions 1.0 through 1.1.4, and Mac RealPlayer versions 11.0 through 12.0.0.1444.
Is there a workaround for CVE-2010-0125?
There are no specific workarounds recommended for CVE-2010-0125, and updating to the latest software version is advised.
Can CVE-2010-0125 be exploited remotely?
Yes, CVE-2010-0125 has unspecified impacts and remote attack vectors, indicating the possibility of remote exploitation.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- collector/nvd-historical
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/realnetworks
- canonical/realplayer
- version/realplayer/11.0
- version/realplayer/11.0.4
- version/realplayer/11.0.2
- version/realplayer/11.0.3
- version/realplayer/11.0.5
- version/realplayer/11.1
- version/realplayer/11.0.1
- canonical/realnetworks realplayer sp
- version/realnetworks realplayer sp/1.0.1
- version/realnetworks realplayer sp/1.1.3
- version/realnetworks realplayer sp/1.0.0
- version/realnetworks realplayer sp/1.0.2
- version/realnetworks realplayer sp/1.1
- version/realnetworks realplayer sp/1.1.2
- version/realnetworks realplayer sp/1.1.4
- version/realnetworks realplayer sp/1.1.1
- version/realnetworks realplayer sp/1.0.5
- version/realplayer/2.1.2
- version/realplayer/1.0.0
- version/realplayer/1.0.1
- version/realplayer/1.0.2
- version/realplayer/1.0.5
- version/realplayer/1.1
- version/realplayer/1.1.1
- version/realplayer/1.1.2
- version/realplayer/1.1.3
- version/realplayer/1.1.4
- version/realplayer/12.0.0.1444
- vendor/apple
- canonical/apple ios and macos