What is the severity of CVE-2012-2406?

The severity of CVE-2012-2406 is rated as critical, as it allows for remote code execution.

How do I fix CVE-2012-2406?

To fix CVE-2012-2406, update RealPlayer to version 15.0.4.53 or later, or the latest version of RealNetworks RealPlayer SP.

What versions are affected by CVE-2012-2406?

CVE-2012-2406 affects RealPlayer versions prior to 15.0.4.53 and RealPlayer SP versions 1.0 through 1.1.5.

Can CVE-2012-2406 be exploited remotely?

Yes, CVE-2012-2406 can be exploited remotely through a crafted RealMedia file.

What are the impacts of CVE-2012-2406?

The impacts of CVE-2012-2406 include potential remote code execution, leading to unauthorized actions on affected systems.

Vulnerability/
CVE-2012-2406

critical

9.3

18/5/2012

6/8/2024

CVE-2012-2406

First published: Fri May 18 2012(Updated: )

RealNetworks RealPlayer before 15.0.4.53, and RealPlayer SP 1.0 through 1.1.5, does not properly parse ASMRuleBook data in RealMedia files, which allows remote attackers to execute arbitrary code via a crafted file.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
RealPlayer	<=15.0.4
RealPlayer	=4
RealPlayer	=5
RealPlayer	=6
RealPlayer	=7
RealPlayer	=8
RealPlayer	=10.0
RealPlayer	=10.5
RealPlayer	=11.0
RealPlayer	=11.0.1
RealPlayer	=11.0.2
RealPlayer	=11.0.2.1744
RealPlayer	=11.0.2.2315
RealPlayer	=11.0.3
RealPlayer	=11.0.4
RealPlayer	=11.0.5
RealPlayer	=11.1
RealPlayer	=11.1.3
RealPlayer	=11_build_6.0.14.748
RealPlayer	=12.0.0.1444
RealPlayer	=12.0.0.1548
RealPlayer	=14.0.0
RealPlayer	=14.0.1
RealPlayer	=14.0.1.609
RealPlayer	=14.0.2
RealPlayer	=14.0.3
RealPlayer	=14.0.4
RealPlayer	=14.0.5
RealPlayer	=15.0.0
RealPlayer	=15.0.1.13
RealPlayer	=15.02.71
RealNetworks RealPlayer SP	=1.0.0
RealNetworks RealPlayer SP	=1.0.1
RealNetworks RealPlayer SP	=1.0.2
RealNetworks RealPlayer SP	=1.0.5
RealNetworks RealPlayer SP	=1.1
RealNetworks RealPlayer SP	=1.1.1
RealNetworks RealPlayer SP	=1.1.2
RealNetworks RealPlayer SP	=1.1.3
RealNetworks RealPlayer SP	=1.1.4
RealNetworks RealPlayer SP	=1.1.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-2406?
The severity of CVE-2012-2406 is rated as critical, as it allows for remote code execution.
How do I fix CVE-2012-2406?
To fix CVE-2012-2406, update RealPlayer to version 15.0.4.53 or later, or the latest version of RealNetworks RealPlayer SP.
What versions are affected by CVE-2012-2406?
CVE-2012-2406 affects RealPlayer versions prior to 15.0.4.53 and RealPlayer SP versions 1.0 through 1.1.5.
Can CVE-2012-2406 be exploited remotely?
Yes, CVE-2012-2406 can be exploited remotely through a crafted RealMedia file.
What are the impacts of CVE-2012-2406?
The impacts of CVE-2012-2406 include potential remote code execution, leading to unauthorized actions on affected systems.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/severity
agent/references
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/realnetworks
canonical/realplayer
version/realplayer/15.0.4
version/realplayer/4
version/realplayer/5
version/realplayer/6
version/realplayer/7
version/realplayer/8
version/realplayer/10.0
version/realplayer/10.5
version/realplayer/11.0
version/realplayer/11.0.1
version/realplayer/11.0.2
version/realplayer/11.0.2.1744
version/realplayer/11.0.2.2315
version/realplayer/11.0.3
version/realplayer/11.0.4
version/realplayer/11.0.5
version/realplayer/11.1
version/realplayer/11.1.3
version/realplayer/11_build_6.0.14.748
version/realplayer/12.0.0.1444
version/realplayer/12.0.0.1548
version/realplayer/14.0.0
version/realplayer/14.0.1
version/realplayer/14.0.1.609
version/realplayer/14.0.2
version/realplayer/14.0.3
version/realplayer/14.0.4
version/realplayer/14.0.5
version/realplayer/15.0.0
version/realplayer/15.0.1.13
version/realplayer/15.02.71
canonical/realnetworks realplayer sp
version/realnetworks realplayer sp/1.0.0
version/realnetworks realplayer sp/1.0.1
version/realnetworks realplayer sp/1.0.2
version/realnetworks realplayer sp/1.0.5
version/realnetworks realplayer sp/1.1
version/realnetworks realplayer sp/1.1.1
version/realnetworks realplayer sp/1.1.2
version/realnetworks realplayer sp/1.1.3
version/realnetworks realplayer sp/1.1.4
version/realnetworks realplayer sp/1.1.5