What is the severity of CVE-2007-6224?

CVE-2007-6224 is classified as a denial-of-service vulnerability allowing remote attackers to crash browsers.

How does CVE-2007-6224 exploit RealPlayer?

CVE-2007-6224 exploits the RealAudio ActiveX control via a malformed argument to the GetSourceTransport method.

Which version of RealPlayer is affected by CVE-2007-6224?

CVE-2007-6224 affects RealPlayer version 11.0.

Which operating systems are vulnerable to CVE-2007-6224?

CVE-2007-6224 impacts systems running RealPlayer 11.0 on Windows XP SP2.

How do I mitigate the effects of CVE-2007-6224?

To mitigate CVE-2007-6224, it is recommended to update RealPlayer to the latest version or disable the RealAudio ActiveX control.

Vulnerability/
CVE-2007-6224

medium

CWE

4/12/2007

14/2/2024

CVE-2007-6224: Input Validation

First published: Tue Dec 04 2007(Updated: )

The RealNetworks RealAudioObjects.RealAudio ActiveX control in rmoc3260.dll, as shipped with RealPlayer 11, allows remote attackers to cause a denial of service (browser crash) via a certain argument to the GetSourceTransport method.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
All of
Any of
Microsoft Windows Vista
Microsoft Windows XP	=sp2
RealPlayer	=11.0
Microsoft Windows Vista
Microsoft Windows XP	=sp2
RealPlayer	=11.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-6224?
CVE-2007-6224 is classified as a denial-of-service vulnerability allowing remote attackers to crash browsers.
How does CVE-2007-6224 exploit RealPlayer?
CVE-2007-6224 exploits the RealAudio ActiveX control via a malformed argument to the GetSourceTransport method.
Which version of RealPlayer is affected by CVE-2007-6224?
CVE-2007-6224 affects RealPlayer version 11.0.
Which operating systems are vulnerable to CVE-2007-6224?
CVE-2007-6224 impacts systems running RealPlayer 11.0 on Windows XP SP2.
How do I mitigate the effects of CVE-2007-6224?
To mitigate CVE-2007-6224, it is recommended to update RealPlayer to the latest version or disable the RealAudio ActiveX control.

collector/nvd-historical
agent/type
agent/first-publish-date
agent/last-modified-date
agent/weakness
agent/references
agent/severity
agent/author
agent/description
agent/event
agent/softwarecombine
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-index
vendor/microsoft
canonical/microsoft windows vista
canonical/microsoft windows xp
version/microsoft windows xp/sp2
vendor/realnetworks
canonical/realplayer
version/realplayer/11.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.