Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Real Networks RealPlayer < 15.0.2.72 Multiple Vulnerabilities

High

Synopsis

The remote host is running an application that is vulnerable to multiple attack vectors.

Description

The remote host is running RealPlayer, a multi-media application.

RealPlayer versions earlier than 15.0.2.72 are potentially affected by the following issues :

- A remote code execution vulnerability exists related to rvrender RMFF Flags. (CVE-2012-0922)

- A remote code execution vulnerability exists related to the RV20 Frame Size Array. (CVE-2012-0923)

- A remote code execution vulnerability exists relating to VIDOBJ_START_CODE. (CVE-2012-0924)

- A remote code execution vulnerability exists relating to RV40. (CVE-2012-0925)

- A remote code execution vulnerability exists relating to RV10 Encoded Height/Width. (CVE-2012-0926)

- A remote code execution vulnerability exists relating to RealAudio coded_frame_size. (CVE-2012-0927)

- A remote code execution vulnerability exists relating to Attrac Sample Decoding. (CVE-2012-0928)

Solution

Upgrade to RealPlayer 15.0.2.72 or later.