Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Windows >> RealPlayer PNG deflate heap corruption


Vulnerability Assessment Details

RealPlayer PNG deflate heap corruption

Vulnerability Assessment Summary
Acertains the version of RealPlayer

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote Windows application is affected by a heap corruption
vulnerability.

Description :

According to its version number, the installed version of RealPlayer /
RealOne Player / RealPlayer Enterprise for Windows has a flaw in the
remote version that may permit a possible hacker to execute arbitrary code on
the remote host, with the rights of the user running RealPlayer.

To do so, a possible hacker would need to send a corrupted PNG file to a
remote user and have him open it using RealPlayer.

See also :

http://www.coresecurity.com/common/showdoc.php?idx=311&idxseccion=10
http://service.real.com/help/faq/security/securityupdate_march2003.html

Solution :

Upgrade according to the vendor advisories referenced above.

Network Security Threat Level:

High / CVSS Base Score : 7
(AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N)

Networks Security ID: 7177

Vulnerability Assessment Copyright: This script is Copyright (C) 2003 - 2005 Tenable Network Security

Cables, Connectors


H261-Z61 2U 24SFF AMD Server 8x EPYC 7551 256-Cores 256GB RAM 8x25G NIC 2x2200W picture

H261-Z61 2U 24SFF AMD Server 8x EPYC 7551 256-Cores 256GB RAM 8x25G NIC 2x2200W

$2497.18



Dell PowerEdge R940 Server 4x Gold 6150 2.70Ghz 72-Core 512GB 800GB SSD + 26.4TB picture

Dell PowerEdge R940 Server 4x Gold 6150 2.70Ghz 72-Core 512GB 800GB SSD + 26.4TB

$5002.65



Dell R730xd 12LFF 2.6Ghz 20-C 128GB 12x16TB NEW HDD H730 2x10G+2x1G NIC 2x1100W picture

Dell R730xd 12LFF 2.6Ghz 20-C 128GB 12x16TB NEW HDD H730 2x10G+2x1G NIC 2x1100W

$2852.85



Dell PowerEdge R630 8SFF 2.6Ghz 20-Core 128GB Mem 4x1G RJ-45 NIC 2x750W PSU picture

Dell PowerEdge R630 8SFF 2.6Ghz 20-Core 128GB Mem 4x1G RJ-45 NIC 2x750W PSU

$372.04



SuperMicro Server 505-2 Intel Atom 2.4GHz 8GB RAM SYS-5018A-FTN4 1U Rackmount picture

SuperMicro Server 505-2 Intel Atom 2.4GHz 8GB RAM SYS-5018A-FTN4 1U Rackmount

$179.99



Dell PowerEdge R720XD Xeon E5-2680 V2 2.8GHz 20 Cores 256GB RAM 12x4TB picture

Dell PowerEdge R720XD Xeon E5-2680 V2 2.8GHz 20 Cores 256GB RAM 12x4TB

$510.00



Dell PowerEdge R720 Server -8 Trays, 128Gb SSD/4Tb, 128Gb RAM, 2x8c CPU, Proxmox picture

Dell PowerEdge R720 Server -8 Trays, 128Gb SSD/4Tb, 128Gb RAM, 2x8c CPU, Proxmox

$360.00



Dell PowerEdge R420 1U Server w/ 2x E5-2430, 48GB RAM, PERC H310 Mini picture

Dell PowerEdge R420 1U Server w/ 2x E5-2430, 48GB RAM, PERC H310 Mini

$69.99



DELL R630 Server 2x E5-2643v3 3.4GHz =12 Cores 64GB H730 4x 1.2TB SAS 4xRJ45 picture

DELL R630 Server 2x E5-2643v3 3.4GHz =12 Cores 64GB H730 4x 1.2TB SAS 4xRJ45

$384.00



Dell PowerEdge R630 Server 2x E5-2620 V4 - 16 Cores S130 32GB RAM 2x Trays picture

Dell PowerEdge R630 Server 2x E5-2620 V4 - 16 Cores S130 32GB RAM 2x Trays

$215.99



Discussions

No Discussions have been posted on this vulnerability.