| VID |
28070 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The RealOne/RealPlayer Player has a RMP File Handler Code Execution Vulnerability.
RealOne / RealPlayer is one of the most widely used products for internet media delivery. Multiple vulnerabilities have been discovered in RealOne Player and RealPlayer, where the most serious potentially can be exploited by remote attackers to compromise a vulnerable system.
By crafting malformed ".RP", ".RT", ".RAM", ".RPM", and ".SMIL" files it is possible to cause heap and stack based overruns in RealPlayer / RealOne Player. By forcing a browser to a website containing such a file, code could be executed on the target machine running in the context of the logged on user, alternatively the end user would be required to open the attachment (except in the case of the .RPM file).
An unspecified error in the handling of ".RMP" files can be exploited to download and execute arbitrary code on a user's system. An input validation error in the handling of ".SMIL" and other files can be exploited to conduct cross-site scripting attacks.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.securityfocus.com/archive/1/352780
http://www.secunia.com/advisories/10796/
* Platforms Affected:
RealPlayer 8
RealPlayer 10 Beta
RealOne Player
RealOne Player v2
RealOne Enterprise Desktop / RealPlayer Enterprise (all language versions, all platforms)
Microsoft Windows Any version |
| Recommendation |
The vendor has issued patches, which can be applied via the "Check for Update" feature. Vendor recommend document is available at http://service.real.com/help/faq/security/040123_player/EN/
Detailed below is the vendor's instruction listed in their own advisory found at upper web site to remedy these issues.
For RealOne Player, RealOne Player v2 (localized languages) and RealPlayer 10 Beta:
1. In the Tools menu select Check for Update.
2. Select the box next to the "RealPlayer 10" (English) or "RealOne Player" (localized) component.
3. Click the Install button to download and install the update.
For RealPlayer 8 (version 6.0.9.584):
1. Go to the Help menu.
2. Select "Check for Update".
3. Select the box next to the "RealPlayer 10" (English) or "RealOne Player" (localized) component.
4. Click the Install button to download and install the update. |
| Related URL |
(CVE) |
| Related URL |
9580 (SecurityFocus) |
| Related URL |
(ISS) |
|
