Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Real Networks RealPlayer < (Build Multiple Remote Code Execution Vulnerabilities



The remote host is running an application that is vulnerable to multiple attack vectors.


The remote host is running RealPlayer, a multi-media application.

RealPlayer builds earlier than are potentially affected by multiple code execution vulnerabilities : - A heap corruption vulnerability when handling specially crafted AVI headers. (CVE-2010-4393)

- A flaw exists in the temporary file naming scheme used for storage which can be combined with the OpenURLinPlayerBrowser function to execute arbitrary code. (CVE-2011-0694)


Upgrade to RealPlayer (Build or later.