Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2005:265
HistoryMar 03, 2005 - 12:00 a.m.

(RHSA-2005:265) RealPlayer security update

2005-03-0300:00:00
access.redhat.com
12

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.676 Medium

EPSS

Percentile

97.6%

JSON

RealPlayer is a media player.

A stack based buffer overflow bug was found in RealPlayer’s Synchronized
Multimedia Integration Language (SMIL) file processor. An attacker could
create a specially crafted SMIL file which would execute arbitrary code
when opened by a user. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2005-0455 to this issue.

A buffer overflow bug was found in the way RealPlayer decodes WAV sound
files. An attacker could create a specially crafted WAV file which could
execute arbitrary code when opened by a user. The Common Vulnerabilities
and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0611
to this issue.

All users of RealPlayer are advised to upgrade to this updated package,
which contains RealPlayer version 10.0.3 and is not vulnerable to these issues.

OSVersionArchitecturePackageVersionFilename
RedHatanyi386realplayer< 10.0.3-1RealPlayer-10.0.3-1.i386.rpm

Related

nessus 7
suse 1
redhat 2
checkpoint_advisories 3
openvas 2
freebsd 1
cve 2
securityvulns 1
packetstorm 1
nessus
nessus
Fedora Core 3 : HelixPlayer-1.0.3-3.fc3 (2005-188)
2005-09-12 00:00:00
RHEL 4 : RealPlayer (RHSA-2005:265)
2005-03-04 00:00:00
SUSE-SA:2005:014: RealPlayer
2005-03-09 00:00:00
suse
suse
remote code execution in RealPlayer
2005-03-09 14:32:31
redhat
redhat
(RHSA-2005:271) HelixPlayer security update
2005-03-03 00:00:00
(RHSA-2005:299) realplayer security update
2005-03-21 00:00:00
checkpoint_advisories
checkpoint_advisories
RealNetworks RealPlayer WAV File Processing Code Execution (CVE-2005-0611)
2013-01-06 00:00:00
RealNetworks RealPlayer WAV File Processing Buffer Overflow (CVE-2005-0611)
2010-06-13 00:00:00
RealNetworks RealPlayer SMIL File Handling Buffer Overflow (CVE-2005-0455)
2009-11-29 00:00:00
openvas
openvas
FreeBSD Ports: linux-realplayer
2008-09-04 00:00:00
FreeBSD Ports: linux-realplayer
2008-09-04 00:00:00
freebsd
freebsd
realplayer -- remote heap overflow
2005-03-01 00:00:00
cve
cve
CVE-2005-0611
2005-05-02 04:00:00
CVE-2005-0455
2005-05-02 04:00:00
securityvulns
securityvulns
iDEFENSE Security Advisory 03.01.05: RealNetworks RealPlayer .smil Buffer Overflow Vulnerability
2005-03-02 00:00:00
packetstorm
packetstorm
RealNetworks RealPlayer SMIL Buffer Overflow
2009-11-26 00:00:00

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.676 Medium

EPSS

Percentile

97.6%

JSON
Related for RHSA-2005:265
nessus7suse1redhat2checkpoint_advisories3openvas2freebsd1cve2securityvulns1packetstorm1