RealPlayer for Windows < Build 126.96.36.1997 Multiple Vulnerabilities
High Nessus Plugin ID 53409
A multimedia application on the remote Windows host is affected by multiple vulnerabilities.
According to its build number, the installed version of RealPlayer on the remote Windows host is affected by multiple vulnerabilities : - The OpenURLInDefaultBrowser() method will open and execute the first parameter based on the operating system's default handler for the filetype and is accessible through RealPlayer's internal browser, which in turn can be reached using a specially crafted RealPlayer audio or settings (RNX) file. (CVE-2011-1426) - A heap-based buffer overflow vulnerability can be triggered when processing a malformed Internet Video Recording (IVR) file. (CVE-2011-1525)
Upgrade to RealPlayer 188.8.131.527 (Build 184.108.40.2067) or later.