Arbitrary Code Execution Vulnerability in RealPlayer

Arbitrary Code Execution Vulnerability in RealPlayer

CVE-2012-2406 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

RealNetworks RealPlayer before 15.0.4.53, and RealPlayer SP 1.0 through 1.1.5, does not properly parse ASMRuleBook data in RealMedia files, which allows remote attackers to execute arbitrary code via a crafted file.

Learn more about our Network Penetration Testing.