CVE-2010-4384: Input Validation
First published: Tue Dec 14 2010(Updated: )
Array index error in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer Enterprise 2.1.2, Mac RealPlayer 11.0 through 11.1, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.0.6 and other versions, allows remote attackers to execute arbitrary code via a malformed Media Properties Header (aka MDPR) in a RealMedia file.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| RealPlayer | =11.0 | |
| RealPlayer | =11.0.4 | |
| RealPlayer | =11.0.2 | |
| RealPlayer | =11.0.3 | |
| RealPlayer | =11.0.5 | |
| RealPlayer | =11.1 | |
| RealPlayer | =11.0.1 | |
| RealPlayer | =2.1.2 | |
| macOS Yosemite | ||
| RealPlayer | =11.0.2.1744 | |
| Linux Kernel |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- collector/nvd-historical
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- vendor/realnetworks
- canonical/realplayer
- version/realplayer/11.0
- version/realplayer/11.0.4
- version/realplayer/11.0.2
- version/realplayer/11.0.3
- version/realplayer/11.0.5
- version/realplayer/11.1
- version/realplayer/11.0.1
- version/realplayer/2.1.2
- vendor/apple
- canonical/macos yosemite
- version/realplayer/11.0.2.1744
- vendor/linux
- canonical/linux kernel