CVE-2010-4392
Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, RealPlayer Enterprise 2.1.2 and 2.1.3, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.0.6 and other versions, allows remote attackers to execute arbitrary code via crafted ImageMap data in a RealMedia file, related to certain improper integer calculations.
| Software | From | Fixed in |
|---|---|---|
| realnetworks / realplayer | 11.0 | 11.0.x |
| realnetworks / realplayer | 11.0.4 | 11.0.4.x |
| realnetworks / realplayer | 11.0.2 | 11.0.2.x |
| realnetworks / realplayer | 11.0.3 | 11.0.3.x |
| realnetworks / realplayer | 11.0.5 | 11.0.5.x |
| realnetworks / realplayer | 11.1 | 11.1.x |
| realnetworks / realplayer | 11.0.1 | 11.0.1.x |
| realnetworks / realplayer_sp | 1.0.1 | 1.0.1.x |
| realnetworks / realplayer_sp | 1.1.5 | 1.1.5.x |
| realnetworks / realplayer_sp | 1.1.3 | 1.1.3.x |
| realnetworks / realplayer_sp | 1.0.0 | 1.0.0.x |
| realnetworks / realplayer_sp | 1.0.2 | 1.0.2.x |
| realnetworks / realplayer_sp | 1.1 | 1.1.x |
| realnetworks / realplayer_sp | 1.1.2 | 1.1.2.x |
| realnetworks / realplayer_sp | 1.1.4 | 1.1.4.x |
| realnetworks / realplayer_sp | 1.1.1 | 1.1.1.x |
| realnetworks / realplayer_sp | 1.0.5 | 1.0.5.x |
| realnetworks / realplayer | 11.0.2.1744 | 11.0.2.1744.x |
| realnetworks / realplayer | 2.1.3 | 2.1.3.x |
| realnetworks / realplayer | 2.1.2 | 2.1.2.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime