Realnetworks : Security Vulnerabilities, CVEs, Published In February 2010 (Denial of service)
Buffer overflow in common/util/rlstate.cpp in Helix Player 1.0.6 and RealPlayer allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a RuleBook structure with a large number of rule-separator characters that trigger heap memory corruption.
Max CVSS
5.0
EPSS Score
30.27%
Published
2010-02-18
Updated
2017-09-19
Buffer overflow in the Unescape function in common/util/hxurl.cpp and player/hxclientkit/src/CHXClientSink.cpp in Helix Player 1.0.6 and RealPlayer allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a URL argument containing a % (percent) character that is not followed by two hex digits.
Max CVSS
7.5
EPSS Score
29.68%
Published
2010-02-18
Updated
2017-09-19
2 vulnerabilities found