Lucene search
HistoryDec 31, 2004 - 5:00 a.m.
CVE-2004-1481
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.26
Percentile
96.7%
Integer overflow in pnen3260.dll in RealPlayer 8 through 10.5 (6.0.12.1040) and earlier, and RealOne Player 1 or 2 on Windows or Mac OS, allows remote attackers to execute arbitrary code via a SMIL file and a .rm movie file with a large length field for the data chunk, which leads to a heap-based buffer overflow.
Affected configurations
Node
realnetworkshelix_playerMatch1.0linux
ORrealnetworksrealone_playerMatch1.0
ORrealnetworksrealone_playerMatch2.0
ORrealnetworksrealone_playerMatch9.0.0.288macos
ORrealnetworksrealone_playerMatch9.0.0.297macos
ORrealnetworksrealplayerMatch-enterprise
ORrealnetworksrealplayerMatch8.0
ORrealnetworksrealplayerMatch8.0mac_os_x
ORrealnetworksrealplayerMatch8.0unix
ORrealnetworksrealplayerMatch10.0
ORrealnetworksrealplayerMatch10.0linux
ORrealnetworksrealplayerMatch10.0de
ORrealnetworksrealplayerMatch10.0en
ORrealnetworksrealplayerMatch10.0ja
ORrealnetworksrealplayerMatch10.0beta
ORrealnetworksrealplayerMatch10.0betamac_os_x
ORrealnetworksrealplayerMatch10.0_6.0.12.690
ORrealnetworksrealplayerMatch10.5
ORrealnetworksrealplayerMatch10.5_6.0.12.1016beta
ORrealnetworksrealplayerMatch10.5_6.0.12.1040
| Vendor | Product | Version | CPE |
|---|---|---|---|
| realnetworks | helix_player | 1.0 | cpe:2.3:a:realnetworks:helix_player:1.0:*:*:*:*:linux:*:* |
| realnetworks | realone_player | 1.0 | cpe:2.3:a:realnetworks:realone_player:1.0:*:*:*:*:*:*:* |
| realnetworks | realone_player | 2.0 | cpe:2.3:a:realnetworks:realone_player:2.0:*:*:*:*:*:*:* |
| realnetworks | realone_player | 9.0.0.288 | cpe:2.3:a:realnetworks:realone_player:9.0.0.288:*:*:*:*:macos:*:* |
| realnetworks | realone_player | 9.0.0.297 | cpe:2.3:a:realnetworks:realone_player:9.0.0.297:*:*:*:*:macos:*:* |
| realnetworks | realplayer | - | cpe:2.3:a:realnetworks:realplayer:-:*:*:*:enterprise:*:*:* |
| realnetworks | realplayer | 8.0 | cpe:2.3:a:realnetworks:realplayer:8.0:*:*:*:*:*:*:* |
| realnetworks | realplayer | 8.0 | cpe:2.3:a:realnetworks:realplayer:8.0:*:*:*:*:mac_os_x:*:* |
| realnetworks | realplayer | 8.0 | cpe:2.3:a:realnetworks:realplayer:8.0:*:*:*:*:unix:*:* |
| realnetworks | realplayer | 10.0 | cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:* |
Related
checkpoint_advisories
checkpoint_advisories
RealNetworks RealPlayer Malformed RM File Heap Overflow (CVE-2004-1481)
2010-02-15 00:00:00
cvelist
cvelist
CVE-2004-1481
2005-02-13 05:00:00
CVE-2005-2629
2005-11-18 23:00:00
cve
cve
CVE-2004-1481
2005-02-13 05:00:00
CVE-2005-2629
2005-11-18 23:03:00
ubuntucve
ubuntucve
CVE-2005-2629
2005-11-18 00:00:00
nvd
nvd
CVE-2005-2629
2005-11-18 23:03:00
nessus
nessus
RealPlayer Multiple Remote Vulnerabilities (2004-09-28)
2004-10-01 00:00:00
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.26
Percentile
96.7%
Related for NVD:CVE-2004-1481