KLA10450ACE vulnerability in RealPlayer

2014-07-07T00:00:00
ID KLA10450
Type kaspersky
Reporter Kaspersky Lab
Modified 2018-10-12T00:00:00

Description

CVSS:

9.3

Detect date:

07/07/2014

Severity:

Critical

Description:

Multiple buffer overflows was found in the RealPlayer. By using this vulnerability malicious user can execute arbitrary code. This vulnerability can be exploited remotely via specially designed MP4 file.

Affected products:

RealPlayer versions earlier than 17.0.10.8

Solution:

Update to latest version
Get RealPlayer

Original advisories:

RealNetworks advisory

Impacts:

ACE

Related products:

RealPlayer

CVE-IDS:

CVE-2014-3113