Heap-based Buffer Overflow in RealPlayer MP3 ID3v2 Tag Parsing

Heap-based Buffer Overflow in RealPlayer MP3 ID3v2 Tag Parsing

CVE-2011-2949 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via crafted ID3v2 tags in an MP3 file.

Learn more about our Network Penetration Testing.