| VID |
28090 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The RealPlayer, according to its version number, contains multiple vulnerabilities.
RealNetworks' RealPlayer is a streaming audio and video player for Microsoft Windows platforms and most Linux and Unix-based operating systems. Several RealPlayer versions contain the following vulnerabilities, which could potentially allow a remote attacker to run arbitrary or malicious code on the target system.
- Malformed Call Code Execution Vulnerability: A remote attacker could execute arbitrary code on the target system, by creating a specially crafted web page that issues malformed calls to corrupt the embedded player.
- Media File Removal Vulnerability: A remote attacker could delete known files from the target system, by creating a specially crafted web page that contains the path of a known files.
- 'RM' File Code Execution Vulnerability: A remote attacker could execute arbitrary code on the target system, by executing a specially crafted RM file from a local drive.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://securitytracker.com/alerts/2004/Sep/1011449.html
http://www.ciac.org/ciac/bulletins/o-223.shtml
* Platforms Affected:
RealPlayer 10.5 (6.0.12.1040) EN for Windows
RealPlayer 10.5 Beta (6.0.12.1016) EN for Windows
RealPlayer 10 All for Windows
RealOne Player v1, v2 All for Windows
RealPlayer 8 All for Windows
RealPlayer Enterprise EN for Windows
Mac RealPlayer 10 Beta EN
Mac RealOne Player EN
RealPlayer 10 EN for Linux
Helix Player EN for Linux
Microsoft Windows Any version |
| Recommendation |
Install the update for this vulnerability, as listed in RealNetworks, Inc. Web site at
http://www.service.real.com/help/faq/security/040928_player/EN/ |
| Related URL |
(CVE) |
| Related URL |
11307,11308,11309 (SecurityFocus) |
| Related URL |
17550,17551,17549 (ISS) |
|
