Family: Windows --> Category: infos
RealPlayer / RealOne Player for Windows Multiple Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Checks for multiple vulnerabilities in RealPlayer / RealOne Player for Windows
Detailed Explanation for this Vulnerability Test
The remote Windows application is affected by multiple
According to its version number, the installed version of RealPlayer /
RealOne Player for Windows is prone to several vulnerabilities :
- A malicious MP3 file can be used to overwrite an arbitrary
file or execute an ActiveX control.
- Using a specially-crafted RealMedia file, a possible hacker may
be able to cause a heap overflow and run arbitrary code
within the context of the affected application.
- Using a specially-crafted AVI file, a possible hacker may
be able to cause a buffer overflow and run arbitrary
code within the context of the affected application.
- A malicious website may be able to cause a local HTML
file to be created that triggers an RM file to play
which would then reference the local HTML file.
See also :
Upgrade according to the vendor advisory referenced above.
High / CVSS Base Score : 7
Click HERE for more information and discussions on this network vulnerability scan.