PT-2012-2955 · Realnetworks · Realplayer Sp+1
Published
2012-02-08
·
Updated
2017-08-29
·
CVE-2012-0925
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
RealPlayer versions 11.x through 15.x before 15.02.71
RealPlayer SP versions 1.0 through 1.1.5
Description
The issue allows remote attackers to execute arbitrary code via a crafted RV40 RealVideo video stream.
Recommendations
For RealPlayer versions 11.x through 15.x before 15.02.71, update to version 15.02.71 or later.
For RealPlayer SP versions 1.0 through 1.1.5, update to a version later than 1.1.5.
Fix
RCE
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Realplayer
Realplayer Sp