RealPlayer for Windows < 220.127.116.11 Multiple Vulnerabilities
High Nessus Plugin ID 62065
SynopsisA multimedia application on the remote Windows host is affected by multiple vulnerabilities.
DescriptionAccording to its build number, the installed version of RealPlayer on the remote Windows host is earlier than 18.104.22.168. As such, it is affected by multiple vulnerabilities :
- A buffer overflow error exists related to 'AAC' handling, specifically unpacking of the stream data.
- A heap-corruption error exists related to the 'AAC SDK' decoding. (CVE-2012-2408)
- Two unspecified buffer overflow errors exist related to 'RealMedia'. (CVE-2012-2409, CVE-2012-2410)
- A divide-by-zero error exists related to 'RealAudio' and codec frame size. (CVE-2012-3234)
SolutionUpgrade to RealPlayer 22.214.171.124 or later.