CVE-2011-4256

The RV30 codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 does not initialize an unspecified index value, which allows remote attackers to execute arbitrary code via unknown vectors.
Code Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
realnetworksrealplayer
𝑥
≤ 12.0.0.1701
realnetworksrealplayer
7.0
realnetworksrealplayer
8.0
realnetworksrealplayer
10.0
realnetworksrealplayer
10.0.0.305
realnetworksrealplayer
10.0.0.331
realnetworksrealplayer
10.1
realnetworksrealplayer
12.0.0.1569
realnetworksrealplayer
𝑥
≤ 14.0.7
realnetworksrealplayer
10.0
realnetworksrealplayer
10.5
realnetworksrealplayer
11.0
realnetworksrealplayer
11.0.1
realnetworksrealplayer
11.0.2
realnetworksrealplayer
11.0.2.1744
realnetworksrealplayer
11.0.2.2315
realnetworksrealplayer
11.0.3
realnetworksrealplayer
11.0.4
realnetworksrealplayer
11.0.5
realnetworksrealplayer
11.1
realnetworksrealplayer
11.1.3
realnetworksrealplayer
11_build_6.0.14.748:_build_6.0
realnetworksrealplayer
12.0.0.1444
realnetworksrealplayer
12.0.0.1548
realnetworksrealplayer
14.0.0
realnetworksrealplayer
14.0.1
realnetworksrealplayer
14.0.1.609
realnetworksrealplayer
14.0.1.633
realnetworksrealplayer
14.0.2
realnetworksrealplayer
14.0.3
realnetworksrealplayer
14.0.4
realnetworksrealplayer
14.0.5
realnetworksrealplayer
14.0.6
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://service.real.com/realplayer/security/11182011_player/en/
http://service.real.com/realplayer/security/11182011_player/en/