AutoUpdate Use-After-Free Vulnerability in RealPlayer and RealPlayer SP

AutoUpdate Use-After-Free Vulnerability in RealPlayer and RealPlayer SP

CVE-2011-2954 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Use-after-free vulnerability in the AutoUpdate feature in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5 and RealPlayer SP 1.0 through 1.1.5, when an Embedded RealPlayer is used, allows remote attackers to execute arbitrary code via unspecified vectors.

Learn more about our Network Penetration Testing.