Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Real Networks RealPlayer < 15.0.6.14 Multiple Vulnerabilities

High

Synopsis

The remote host is running an application that is vulnerable to multiple vulnerabilities.

Description

The remote host is running RealPlayer, a multi-media application.

RealPlayer builds earlier than 15.0.6.14 are potentially affected by multiple vulnerabilities :

- A buffer overflow error exists related to 'AAC' handling, specifically unpacking of the stream data. (CVE-2012-2407)

- A heap-corruption error exists related to the 'AAC SDK' decoding. (CVE-2012-2408)

- Two unspecified buffer overflow errors exist related to 'RealMedia'. (CVE-2012-2409, CVE-2012-2410)

- A divide-by-zero error exists related to 'RealAudio' and codec frame size. (CVE-2012-3234)

Solution

Upgrade to RealPlayer 15.0.6.14 or later.