Arbitrary Code Execution and Denial of Service Vulnerability in RealPlayer 16.0.3.51 and Earlier

Arbitrary Code Execution and Denial of Service Vulnerability in RealPlayer 16.0.3.51 and Earlier

CVE-2014-3444 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The GetGUID function in codecs/dmp4.dll in RealNetworks RealPlayer 16.0.3.51 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (write access violation and application crash) via a malformed .3gp file.

Learn more about our Network Penetration Testing.