CVE-2011-2954 in RealPlayerinfo

Summary

Use-after-free vulnerability in the AutoUpdate feature in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5 and RealPlayer SP 1.0 through 1.1.5, when an Embedded RealPlayer is used, allows remote attackers to execute arbitrary code via unspecified vectors.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

07/27/2011

Disclosure

08/18/2011

Moderation

VulDB entry created

Entries

1: VDB-58331

CPE

ready

CWE

CWE-399 (Confirmed)

CVSS

10.0

EPSS

0.01652

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-2954
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-2954
CVE Details	https://www.cvedetails.com/cve/CVE-2011-2954/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!