CVE-2014-3444

The GetGUID function in codecs/dmp4.dll in RealNetworks RealPlayer 16.0.3.51 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (write access violation and application crash) via a malformed .3gp file.

Published: May 20, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-3444
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-94

Affected Software
References

Software	From	Fixed in
realnetworks / realplayer	16.0.1.18	16.0.1.18.x
realnetworks / realplayer	-	16.0.3.51.x
realnetworks / realplayer	16.0.0	16.0.0.x
realnetworks / realplayer	16.0.2.32	16.0.2.32.x
realnetworks / realplayer	16.0.0.282	16.0.0.282.x

http://packetstormsecurity.com/files/126637

Vulnerability Database

289,784

CVE-2014-3444