icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Real Networks RealPlayer < 15.0.4.53 Multiple Vulnerabilities

High

Synopsis

The remote host is running an application that is vulnerable to multiple attack vectors.

Description

The remote host is running RealPlayer, a multi-media application.

RealPlayer builds earlier than 15.0.4.53 are potentially affected by multiple vulnerabilities :

- A memory corruption error exists related to the handling of 'MP4' files. (CVE-2012-1904)

- An unspecified error exists related to the parsing of 'RealMedia ASMRuleBook' files that can lead to remote arbitrary code execution. (CVE-2012-2406)

- A buffer overflow exists related to the parsing of 'RealJukebox Media' content. (CVE-2012-2411)

Solution

Upgrade to RealPlayer 15.0.4.53 or later.