CVE-2012-0924

RealNetworks RealPlayer 11.x, 14.x, and 15.x before 15.02.71, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via vectors involving a VIDOBJ_START_CODE code in a header within a video stream.
Code Injection
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:C/I:C/A:C
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
VendorProductVersion
realnetworksrealplayer
14.0.0
realnetworksrealplayer
14.0.1
realnetworksrealplayer
14.0.1.609
realnetworksrealplayer
14.0.1.633
realnetworksrealplayer
14.0.2
realnetworksrealplayer
14.0.3
realnetworksrealplayer
14.0.4
realnetworksrealplayer
14.0.5
realnetworksrealplayer
14.0.6
realnetworksrealplayer
14.0.7
realnetworksrealplayer
11.0
realnetworksrealplayer
11.0.1
realnetworksrealplayer
11.0.2
realnetworksrealplayer
11.0.2.1744
realnetworksrealplayer
11.0.2.2315
realnetworksrealplayer
11.0.3
realnetworksrealplayer
11.0.4
realnetworksrealplayer
11.0.5
realnetworksrealplayer
11.1
realnetworksrealplayer
11.1.3
realnetworksrealplayer
11_build_6.0.14.748
realnetworksrealplayer
15.0.0
realnetworksrealplayer
15.0.1.13
realnetworksrealplayer_sp
1.0.0
realnetworksrealplayer_sp
1.0.1
realnetworksrealplayer_sp
1.0.2
realnetworksrealplayer_sp
1.0.5
realnetworksrealplayer_sp
1.1
realnetworksrealplayer_sp
1.1.1
realnetworksrealplayer_sp
1.1.2
realnetworksrealplayer_sp
1.1.3
realnetworksrealplayer_sp
1.1.4
realnetworksrealplayer_sp
1.1.5
𝑥
= Vulnerable software versions