RealPlayer '.3gp' File Processing Memory Corruption Vulnerability (CVE-2014-3444)
Severity: : High
Advisory Date: 21 lipca 2015
DESCRIPTION
The GetGUID function in codecs/dmp4.dll in RealNetworks RealPlayer 16.0.3.51 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (write access violation and application crash) via a malformed .3gp file.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1006234