CVE-2011-2950

Realnetworks Realplayer - Memory Corruption

Title source: rule

Description

Heap-based buffer overflow in qcpfformat.dll in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to execute arbitrary code via a crafted QCP file.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17849

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Sean de Regge, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/realplayer_qcp.rb

View Code ZIP pw:eip

References (5)

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1025943

[Third Party Advisory] http://zerodayinitiative.com/advisories/ZDI-11-265/

[Vendor Advisory] http://service.real.com/realplayer/security/08162011_player/en/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/49172

[Third Party Advisory] http://securityreason.com/securityalert/8388

Scores

EPSS 0.6661

EPSS Percentile 98.5%

Details

CWE

CWE-119

Status published

Products (18)

realnetworks/realplayer 11.0

realnetworks/realplayer 11.1

realnetworks/realplayer 14.0.0

realnetworks/realplayer 14.0.1

realnetworks/realplayer 14.0.2

realnetworks/realplayer 14.0.3

realnetworks/realplayer 14.0.4

realnetworks/realplayer 14.0.5

realnetworks/realplayer_sp 1.0.0

realnetworks/realplayer_sp 1.0.1

... and 8 more

Published Aug 18, 2011

Tracked Since Feb 18, 2026