فا

‫ RealPlayer MP4 File Atom Handling Buffer Overflow Vulnerability

IRCAD2014073402

Number: IRCAD2014073402

Date: 2014/07/03

Criticality level: highly critical

Software:

RealPlayer Cloud 17.x

Description

FortiGuard has reported a vulnerability in RealPlayer, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an error when handling atoms in MP4 files and can be exploited to cause a buffer overflow via an MP4 file containing a specially crafted "stsz" or "elst" atom.

Successful exploitation may allow execution of arbitrary code.

The vulnerability is reported in versions prior to 17.0.10.8.

Solution:

Update to version 17.0.10.8.

Resources:

RealNetworks:

http://service.real.com/realplayer/security/06272014_player/en/

FortiGuard:

secunia:

http://secunia.com/advisories/59238/


نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 14 تیر 1393

امتیاز

امتیاز شما
تعداد امتیازها: 0