|
Family: Windows --> Category: infos
RealPlayer Multiple Remote Overflows Vulnerability Scan
Vulnerability Scan Summary Acertains the version of RealPlayer
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote Windows application is affected by several remote
overflows.
Description :
According to its version number, the installed version of RealPlayer /
RealOne Player / RealPlayer Enterprise for Windows might allow an
attacker to execute arbitrary code and delete arbitrary files on the
remote host.
To exploit these flaws, a possible hacker would send a malformed SMIL or WAV
file to a user on the remote host and wait for him to open it.
See also :
http://www.idefense.com/application/poi/display?id=209&type=vulnerabilities
http://www.securityfocus.com/archive/1/391959
http://service.real.com/help/faq/security/050224_player/EN/
Solution :
Upgrade according to the vendor advisories referenced above.
Threat Level:
High / CVSS Base Score : 7
(AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|