Lucene search

K
nessusTenable6488.PRM
HistoryMay 17, 2012 - 12:00 a.m.

Real Networks RealPlayer < 15.0.4.53 Multiple Vulnerabilities

2012-05-1700:00:00
Tenable
www.tenable.com
8

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.08 Low

EPSS

Percentile

94.3%

The remote host is running RealPlayer, a multi-media application.

RealPlayer builds earlier than 15.0.4.53 are potentially affected by multiple vulnerabilities :

  • A memory corruption error exists related to the handling of ‘MP4’ files. (CVE-2012-1904)

  • An unspecified error exists related to the parsing of ‘RealMedia ASMRuleBook’ files that can lead to remote arbitrary code execution. (CVE-2012-2406)

  • A buffer overflow exists related to the parsing of ‘RealJukebox Media’ content. (CVE-2012-2411)

Binary data 6488.prm
VendorProductVersionCPE
realnetworksrealplayercpe:/a:realnetworks:realplayer

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.08 Low

EPSS

Percentile

94.3%