RealNetworks RealPlayer 'OpenURLInDefaultBrowser()' Code Execution Vulnerability (Windows)

This host is installed with RealPlayer which is prone to Code Execution Vulnerability. OpenVAS Vulnerability Test $Id: gbrealplayercodeexecvulnwin.nasl 7015 2017-08-28 11:51:24Z teissa $ RealNetworks RealPlayer 'OpenURLInDefaultBrowser' Code Execution Vulnerability Windows Authors: Madhuri D...

CVE-2011-1426

The OpenURLInDefaultBrowser method in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.2, and RealPlayer SP 1.0 through 1.1.5, launches a default handler for the filename specified in the first argument, which allows remote attackers to execute arbitrary code via a .rnx filename...

Open redirect

The OpenURLInDefaultBrowser method in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.2, and RealPlayer SP 1.0 through 1.1.5, launches a default handler for the filename specified in the first argument, which allows remote attackers to execute arbitrary code via a .rnx filename...

RealNetworks RealPlayer OpenURLInDefaultBrowser Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within RealPlay...