Intrusion Prevention

RealNetworks.RealPlayer.mp4.File.Handling.Memory.Corruption

Description

This indicates an attack attempt against a Memory Corruption vulnerability in Real Networks RealPlayer.
The vulnerability is caused by an error when the vulnerable software handles a malformed "mp4" file. As a result, a remote attacker can exploit this to execute arbitrary code within the context of the application or possibly cause a denial of service condition.

Affected Products

Real Networks RealPlayer SP 1.1.4
Real Networks RealPlayer SP 1.1.4 Build 12.0.0.7
Real Networks RealPlayer SP 1.1.3
Real Networks RealPlayer SP 1.1.2
Real Networks RealPlayer SP 1.1.1
Real Networks RealPlayer SP 1.1

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.