KLA10895
Denial of service vulnerability in RealNetworks RealPlayer
Обновлено: 17/06/2019
Дата обнаружения
28/10/2016
Уровень угрозы
Warning
Описание

An improper data handling was found in RealNetworks RealPlayer. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed .QCP file.

NB: This vulnerability have no public CVSS rating so rating can be changed by the time.


Technical details

This vulnerability related to qcpfformat.dll and can be triggered via repeating VRAT chunk.

Пораженные продукты

RealNetworks RealPlayer 18.1.5.705

Решение

Avoid opening .QCP files from untrusted sources.

Оказываемое влияние
?
DoS 
[?]
Связанные продукты
RealTimes
CVE-IDS
CVE-2016-90184.3Warning