Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2407

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-2407
Last Modified 21 Mar 2013 11:10:25
Published 12 Sep 2012 06:38:33
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-2407

Summary

Buffer overflow in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted AAC file that is not properly handled during stream-data unpacking.

Vulnerable Systems

Application

  • Realnetworks Realplayer 10.0

  • Realnetworks Realplayer 10.5

  • Realnetworks Realplayer 11 Build 6.0.14.748

  • Realnetworks Realplayer 11.0

  • Realnetworks Realplayer 11.0.1

  • Realnetworks Realplayer 11.0.2

  • Realnetworks Realplayer 11.0.2.1744

  • Realnetworks Realplayer 11.0.2.2315

  • Realnetworks Realplayer 11.0.3

  • Realnetworks Realplayer 11.0.4

  • Realnetworks Realplayer 11.0.5

  • Realnetworks Realplayer 11.1

  • Realnetworks Realplayer 11.1.3

  • Realnetworks Realplayer 12.0.0.1444

  • Realnetworks Realplayer 12.0.0.1548

  • Realnetworks Realplayer 12.0.0.1701

  • Realnetworks Realplayer 14.0.0

  • Realnetworks Realplayer 14.0.1

  • Realnetworks Realplayer 14.0.1.609

  • Realnetworks Realplayer 14.0.2

  • Realnetworks Realplayer 14.0.3

  • Realnetworks Realplayer 14.0.4

  • Realnetworks Realplayer 14.0.5

  • Realnetworks Realplayer 15.0.2.72

  • Realnetworks Realplayer 15.0.3.37

  • Realnetworks Realplayer 15.0.5.109

  • Realnetworks Realplayer 2.1.2

  • Realnetworks Realplayer 2.1.3

  • Realnetworks Realplayer 2.1.4

  • Realnetworks Realplayer 4

  • Realnetworks Realplayer 5

  • Realnetworks Realplayer 6

  • Realnetworks Realplayer 7

  • Realnetworks Realplayer 8

  • Realnetworks Realplayer Sp 1.0.0

  • Realnetworks Realplayer Sp 1.0.1

  • Realnetworks Realplayer Sp 1.0.2

  • Realnetworks Realplayer Sp 1.0.5

  • Realnetworks Realplayer Sp 1.1

  • Realnetworks Realplayer Sp 1.1.1

  • Realnetworks Realplayer Sp 1.1.2

  • Realnetworks Realplayer Sp 1.1.3

  • Realnetworks Realplayer Sp 1.1.4

  • Realnetworks Realplayer Sp 1.1.5


References

CONFIRM - http://service.real.com/realplayer/security/09072012_player/en/

XF - realplayer-aac-data-bo(78384)


Last Updated: 27 May 2016 11:00:34