CVE-2012-2407

RealNetworks RealPlayer <15.0.6.14, <1.1.5 - Buffer Overflow

Title source: llm
STIX 2.1

Description

Buffer overflow in RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted AAC file that is not properly handled during stream-data unpacking.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/78384

Scores

EPSS 0.0050
EPSS Percentile 66.2%

Details

CWE
CWE-119
Status published
Products (44)
realnetworks/realplayer 2.1.2
realnetworks/realplayer 2.1.3
realnetworks/realplayer 2.1.4
realnetworks/realplayer 4
realnetworks/realplayer 5
realnetworks/realplayer 6
realnetworks/realplayer 7
realnetworks/realplayer 8
realnetworks/realplayer 10.0
realnetworks/realplayer 10.5
... and 34 more
Published Sep 12, 2012
Tracked Since Feb 18, 2026