KLA10306ACE vulnerability in RealPlayer

2014-07-07T00:00:00
ID KLA10306
Type kaspersky
Reporter Kaspersky Lab
Modified 2018-12-04T00:00:00

Description

CVSS:

9.3

Detect date:

07/07/2014

Severity:

Critical

Description:

A buffer overflow was found in RealPlayer. By exploiting this vulnerability malicious users can execute arbitrary files. This vulnerability can be exploited remotely via a specially designed MP4 file.

Affected products:

RealPlayer for Windows versions eariler than 17.0.10.8
RealPlayer for Mac OS versions earlier than 12.0.1.1738

Solution:

Update to latest version (Now is RealPLayer Cloud)
RealPlayer

Original advisories:

RealPlayer bulletin

Impacts:

ACE

Related products:

RealPlayer

CVE-IDS:

CVE-2014-3113