Schweregrad: : Crítico
  Identificador(es) CVE: : CVE-2011-4259
  Data do informe: 21 julho 2015

  Descrição

RealNetwork RealPlayer is prone to an integer underflow vulnerability. Successful exploitation will allow attackers to execute arbitrary code via a crafted width value in an MPG file.

  Exposição das informações

Apply associated Trend Micro DPI Rules.

  Solução

  Trend Micro Deep Security DPI Rule Number: 1004868
  Trend Micro Deep Security DPI Rule Name: 1004868 - RealNetwork RealPlayer MPG Width Integer Underflow Remote Code Execution Vulnerability

  Software infectado e versão:

  • realnetworks realplayer 10.0
  • realnetworks realplayer 10.5
  • realnetworks realplayer 11.0
  • realnetworks realplayer 11.0.1
  • realnetworks realplayer 11.0.2
  • realnetworks realplayer 11.0.2.1744
  • realnetworks realplayer 11.0.2.2315
  • realnetworks realplayer 11.0.3
  • realnetworks realplayer 11.0.4
  • realnetworks realplayer 11.0.5
  • realnetworks realplayer 11.1
  • realnetworks realplayer 11.1.3
  • realnetworks realplayer 11_build_6.0.14.748
  • realnetworks realplayer 12.0.0.1444
  • realnetworks realplayer 12.0.0.1548
  • realnetworks realplayer 14.0.0
  • realnetworks realplayer 14.0.1
  • realnetworks realplayer 14.0.1.609
  • realnetworks realplayer 14.0.1.633
  • realnetworks realplayer 14.0.2
  • realnetworks realplayer 14.0.3
  • realnetworks realplayer 14.0.4
  • realnetworks realplayer 14.0.5
  • realnetworks realplayer 14.0.6
  • realnetworks realplayer 14.0.7
  • realnetworks realplayer 4
  • realnetworks realplayer 5
  • realnetworks realplayer 6
  • realnetworks realplayer 7
  • realnetworks realplayer 8