CVE-2012-2408 Information

Description

The AAC SDK in RealNetworks RealPlayer before 15.0.6.14 RealPlayer SP 1.0 through 1.1.5 and Mac RealPlayer before 12.0.1.1750 allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted AAC file that is not properly handled during decoding.

Reference

http://service.real.com/realplayer/security/09072012_player/en/ https://exchange.xforce.ibmcloud.com/vulnerabilities/78385