← back
CVE-2011-2949

CVE-2011-2949

EPSS 5.0%
Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via crafted ID3v2 tags in an MP3 file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://service.real.com/realplayer/security/08162011_player/en/http://www.securitytracker.com/id?1025943http://zerodayinitiative.com/advisories/ZDI-11-267/