Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 through 1.1.4 on Windows allows remote attackers to execute arbitrary code via large size values in QCP audio content.
2010-08-30T20:00:01.920
2025-04-11T00:51:21.963
Deferred
CVSSv2: 9.3 (HIGH)
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.6
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | realnetworks | realplayer | 11.0 | Yes |
| Application | realnetworks | realplayer | 11.1 | Yes |
| Operating System | microsoft | windows | * | No |
| Application | realnetworks | realplayer_sp | 1.0.0 | Yes |
| Application | realnetworks | realplayer_sp | 1.0.1 | Yes |
| Application | realnetworks | realplayer_sp | 1.0.2 | Yes |
| Application | realnetworks | realplayer_sp | 1.0.5 | Yes |
| Application | realnetworks | realplayer_sp | 1.1 | Yes |
| Application | realnetworks | realplayer_sp | 1.1.1 | Yes |
| Application | realnetworks | realplayer_sp | 1.1.2 | Yes |
| Application | realnetworks | realplayer_sp | 1.1.3 | Yes |
| Application | realnetworks | realplayer_sp | 1.1.4 | Yes |
| Operating System | microsoft | windows | * | No |