VYPR
Unrated severityNVD Advisory· Published Jan 25, 2010· Updated Jun 16, 2026

CVE-2009-4246

CVE-2009-4246

Description

Stack-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows user-assisted remote attackers to execute arbitrary code via a malformed .RJS skin file that contains a web.xmb file with crafted length values.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

20
  • cpe:2.3:a:realnetworks:helix_player:10.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:realnetworks:helix_player:10.0:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:helix_player:11.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:helix_player:11.0.1:*:*:*:*:*:*:*
    • (no CPE)range: 10.x
  • cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*+ 15 more
    • cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:10.0:*:linux:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:10.1:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:10.5:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:11.0:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:11.0.0:*:linux:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:11.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:11.0.1:*:linux:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:11.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:11.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:11.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer:11.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer_enterprise:*:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer_sp:1.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:realplayer_sp:1.0.1:*:*:*:*:*:*:*
    • (no CPE)range: 10, 10.5 (6.0.12.1040-6.0.12.1741), 11 (11.0.0-11.0.4), Enterprise, Mac 10/10.1, Linux 10

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.