14 DAY TRIAL // All RealPlayer variants contain a number of seven highly critical remote code execution vulnerabilities and as a result RealNetworks released the 15.02.71 version to address the issues.
According to Secunia, unspecified errors exist in rvrender when processing RMFF flags. Other similar errors affect the products when processing RV20 frame size array, VIDOBJ_START_CODE segments, RV40 content, height and width values within RV10 encoded content, and RealAudio coded_frame_size values.
All these vulnerabilities could allow an attacker to execute arbitrary code, but the vendor reveals that so far they haven’t received any reports that the weaknesses are being exploited in the wild.
Since all the prior versions were found to be vulnerable, users are advised to immediately update to RealPlayer 15.02.72, which integrates all the security and other functionality fixes, to prevent any unfortunate incidents. RealPlayer 15.02.72 is available for download here.