Realnetworks CVEs and Security Vulnerabilities

Filtered by vendor Realnetworks Subscriptions

Search

Switch to Advanced Search (Beta)

Total 217 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2004-0049	1 Realnetworks	2 Helix Universal Mobile Server, Helix Universal Server	2025-04-03	N/A
Helix Universal Server/Proxy 9 and Mobile Server 10 allow remote attackers to cause a denial of service via certain HTTP POST messages to the Administration System port.
CVE-2004-0258	1 Realnetworks	4 Realone Desktop Manager, Realone Enterprise Desktop, Realone Player and 1 more	2025-04-03	N/A
Multiple buffer overflows in RealOne Player, RealOne Player 2.0, RealOne Enterprise Desktop, and RealPlayer Enterprise allow remote attackers to execute arbitrary code via malformed (1) .RP, (2) .RT, (3) .RAM, (4) .RPM or (5) .SMIL files.
CVE-2004-0273	1 Realnetworks	3 Realone Desktop Manager, Realone Enterprise Desktop, Realone Player	2025-04-03	N/A
Directory traversal vulnerability in RealOne Player, RealOne Player 2.0, and RealOne Enterprise Desktop allows remote attackers to upload arbitrary files via an RMP file that contains .. (dot dot) sequences in a .rjs skin file.
CVE-2004-0389	1 Realnetworks	1 Helix Universal Server	2025-04-03	7.5 High
RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via malformed requests that trigger a null dereference, as demonstrated using (1) GET_PARAMETER or (2) DESCRIBE requests.
CVE-2004-0550	2 Realnetworks, Redhat	2 Realplayer, Rhel Extras	2025-04-03	N/A
Buffer overflow in Real Networks RealPlayer 10 allows remote attackers to execute arbitrary code via a URL with a large number of "." (period) characters.
CVE-2004-0774	1 Realnetworks	2 Helix Universal Mobile Server And Gateway, Helix Universal Server	2025-04-03	N/A
RealNetworks Helix Universal Server 9.0.2 for Linux and 9.0.3 for Windows allows remote attackers to cause a denial of service (CPU and memory exhaustion) via a POST request with a Content-Length header set to -1.
CVE-1999-0896	1 Realnetworks	1 Realserver G2	2025-04-03	N/A
Buffer overflow in RealNetworks RealServer administration utility allows remote attackers to execute arbitrary commands via a long username and password.
CVE-2005-0189	2 Realnetworks, Redhat	3 Realone Player, Realplayer, Rhel Extras	2025-04-03	N/A
Stack-based buffer overflow in the HandleAction function in RealPlayer 10.5 (6.0.12.1040) and earlier allows remote attackers to execute arbitrary code via a long ShowPreferences argument.
CVE-2005-0190	1 Realnetworks	2 Realone Player, Realplayer	2025-04-03	N/A
Directory traversal vulnerability in RealPlayer 10.5 (6.0.12.1040) and earlier allows remote attackers to delete arbitrary files via a Real Metadata Packages (RMP) file with a FILENAME tag containing .. (dot dot) sequences in a filename that ends with a ? (question mark) and an allowed file extension (e.g. .mp3), which bypasses the check for the file extension.
CVE-2005-0191	2 Realnetworks, Redhat	3 Realone Player, Realplayer, Rhel Extras	2025-04-03	N/A
Off-by-one buffer overflow in the processing of tags in Real Metadata Package (RMP) files in RealPlayer 10.5 (6.0.12.1040) and earlier could allow remote attackers to execute arbitrary code via a long tag.
CVE-2005-0347	1 Realnetworks	1 Realarcade	2025-04-03	N/A
Integer overflow in RealArcade 1.2.0.994 and earlier allows remote attackers to execute arbitrary code via an RGS file with an invalid size string for the GUID and game name, which leads to a buffer overflow.
CVE-2005-0348	1 Realnetworks	1 Realarcade	2025-04-03	N/A
Directory traversal vulnerability in RealArcade 1.2.0.994 allows remote attackers to delete arbitrary files via an RGP file with a .. (dot dot) in the FILENAME tag.
CVE-2005-0455	2 Realnetworks, Redhat	4 Realone Player, Realplayer, Enterprise Linux and 1 more	2025-04-03	N/A
Stack-based buffer overflow in the CSmil1Parser::testAttributeFailed function in smlparse.cpp for RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1 allows remote attackers to execute arbitrary code via a .SMIL file with a large system-screen-size value.
CVE-2005-0611	2 Realnetworks, Redhat	5 Helix Player, Realone Player, Realplayer and 2 more	2025-04-03	N/A
Heap-based buffer overflow in RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1, allows remote attackers to execute arbitrary code via .WAV files.
CVE-2000-0185	1 Realnetworks	2 Realserver, Realserver G2	2025-04-03	N/A
RealMedia RealServer reveals the real IP address of a Real Server, even if the address is supposed to be private.
CVE-2005-2055	1 Realnetworks	2 Realone Player, Realplayer	2025-04-03	N/A
RealPlayer 8, 10, 10.5 (6.0.12.1040-1069), and Enterprise and RealOne Player v1 and v2 allows remote malicious web server to create an arbitrary HTML file that executes an RM file via "default settings of earlier Internet Explorer browsers".
CVE-2005-2629	2 Realnetworks, Redhat	5 Helix Player, Realone Player, Realplayer and 2 more	2025-04-03	N/A
Integer overflow in RealNetworks RealPlayer 8, 10, and 10.5, RealOne Player 1 and 2, and Helix Player 10.0.0 allows remote attackers to execute arbitrary code via an .rm movie file with a large value in the length field of the first data packet, which leads to a stack-based buffer overflow, a different vulnerability than CVE-2004-1481.
CVE-1999-1369	1 Realnetworks	1 Realserver	2025-04-03	N/A
Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain privileges.
CVE-1999-1282	1 Realnetworks	1 Realsystem G2 Server	2025-04-03	N/A
RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privileges.
CVE-1999-1045	1 Realnetworks	1 Realserver	2025-04-03	N/A
pnserver in RealServer 5.0 and earlier allows remote attackers to cause a denial of service by sending a short, malformed request.

« first previous Page 10 of 11. next last »