Published: 20/05/2014 Updated: 20/05/2014

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

The GetGUID function in codecs/dmp4.dll in RealNetworks RealPlayer 16.0.3.51 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service (write access violation and application crash) via a malformed .3gp file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
realnetworks realplayer
realnetworks realplayer 16.0.2.32
realnetworks realplayer 16.0.1.18
realnetworks realplayer 16.0.0.282
realnetworks realplayer 16.0.0

source: wwwsecurityfocuscom/bid/67434/info RealPlayer is prone to a memory-corruption vulnerability An attacker can leverage this issue to crash the affected application, causing a denial-of-service condition Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed Realplayer 160351 ...

Realplayer version 160351 suffers from a memory corruption vulnerability ...

CWE-94 http://packetstormsecurity.com/files/126637 https://nvd.nist.gov https://www.exploit-db.com/exploits/39182/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-3444

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect