Lucene search

PRIOn knowledge basePRION:CVE-2012-2408

HistorySep 12, 2012 - 10:38 a.m.

Memory corruption

2012-09-1210:38:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

58.4%

JSON

The AAC SDK in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted AAC file that is not properly handled during decoding.

CPENameOperatorVersion
realplayereq11.0
realplayereq15.0.2.72
realplayereq10.0
realplayereq11.0.4
realplayereq2.1.3 enterprise
realplayereq4
realplayereq14.0.3
realplayerle15.0.5.109
realplayereq5
realplayereq14.0.1

Name	Operator	Version
realplayer	eq	11.0
realplayer	eq	15.0.2.72
realplayer	eq	10.0
realplayer	eq	11.0.4
realplayer	eq	2.1.3 enterprise
realplayer	eq	4
realplayer	eq	14.0.3
realplayer	le	15.0.5.109
realplayer	eq	5
realplayer	eq	14.0.1

Rows per page:

1-10 of 441

References

service.real.com/realplayer/security/09072012_player/en/

exchange.xforce.ibmcloud.com/vulnerabilities/78385

7.9 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

58.4%

JSON

Related for PRION:CVE-2012-2408