PT-2010-4124 · Realnetworks · Realplayer Sp+4
Published
2010-12-14
·
Updated
2011-01-19
·
CVE-2010-2579
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
RealPlayer versions 11.0 through 11.1
RealPlayer SP versions 1.0 through 1.1.4
RealPlayer Enterprise version 2.1.2
Mac RealPlayer versions 11.0 through 11.1
Linux RealPlayer version 11.0.2.1744
Description
The issue is related to the cook codec in RealPlayer, which does not properly initialize the number of channels. This allows attackers to obtain unspecified memory access via unknown vectors.
Recommendations
For RealPlayer versions 11.0 through 11.1, update to a version that fixes the cook codec initialization issue.
For RealPlayer SP versions 1.0 through 1.1.4, update to a version that fixes the cook codec initialization issue.
For RealPlayer Enterprise version 2.1.2, update to a version that fixes the cook codec initialization issue.
For Mac RealPlayer versions 11.0 through 11.1, update to a version that fixes the cook codec initialization issue.
For Linux RealPlayer version 11.0.2.1744, update to a version that fixes the cook codec initialization issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux Realplayer
Mac Realplayer
Realplayer
Realplayer Enterprise
Realplayer Sp