Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2007:0841
HistoryAug 17, 2007 - 12:00 a.m.

(RHSA-2007:0841) Critical: RealPlayer security update

2007-08-1700:00:00
access.redhat.com
11

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.963 High

EPSS

Percentile

99.4%

JSON

RealPlayer is a media player that provides media playback locally and via
streaming.

A buffer overflow flaw was found in the way RealPlayer processed
Synchronized Multimedia Integration Language (SMIL) files. It was possible
for a malformed SMIL file to execute arbitrary code with the permissions of
the user running RealPlayer. (CVE-2007-3410)

All users of RealPlayer are advised to upgrade to this updated package
containing RealPlayer version 10.0.9 which is not vulnerable to this issue.

OSVersionArchitecturePackageVersionFilename
RedHat5i386realplayer< 10.0.9-3.el5RealPlayer-10.0.9-3.el5.i386.rpm

Related

openvas 6
nessus 10
freebsd 1
securityvulns 5
redhat 1
d2 1
cert 1
ubuntucve 4
fedora 1
oraclelinux 1
saint 4
zdi 2
checkpoint_advisories 3
prion 4
cve 4
seebug 1
gentoo 1
centos 1
openvas
openvas
FreeBSD Ports: linux-realplayer
2008-09-04 00:00:00
FreeBSD Ports: linux-realplayer
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200709-05 (realplayer)
2008-09-24 00:00:00
nessus
nessus
RHEL 3 / 4 / 5 : RealPlayer (RHSA-2007:0841)
2009-08-24 00:00:00
FreeBSD : linux-realplayer -- multiple vulnerabilities (f762ccbb-baed-11dc-a302-000102cc8983)
2008-01-07 00:00:00
RealPlayer for Windows < Build 6.0.12.1662 Multiple Vulnerabilities
2007-10-30 00:00:00
freebsd
freebsd
linux-realplayer -- multiple vulnerabilities
2007-10-25 00:00:00
securityvulns
securityvulns
Real Player multiple buffer overflows
2007-11-02 00:00:00
RealPlayer / HelixPlayer buffer overflow
2007-06-27 00:00:00
ZDI-07-061: RealNetworks RealPlayer SWF Processing Remote Code Execution Vulnerability
2007-11-02 00:00:00
redhat
redhat
(RHSA-2007:0605) Critical: HelixPlayer security update
2007-06-27 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_REAL_WALLCLOCK
2007-06-26 22:30:00
cert
cert
RealNetworks players SMIL "wallclock" buffer overflow
2007-06-28 00:00:00
ubuntucve
ubuntucve
CVE-2007-3410
2007-06-26 00:00:00
CVE-2007-2263
2007-10-31 00:00:00
CVE-2007-2264
2007-10-31 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: HelixPlayer-1.0.7-6.fc7
2007-06-29 14:04:07
oraclelinux
oraclelinux
Critical: HelixPlayer security update
2007-06-27 00:00:00
saint
saint
RealPlayer SMIL file wallclock buffer overflow
2007-06-29 00:00:00
RealPlayer SMIL file wallclock buffer overflow
2007-06-29 00:00:00
RealPlayer SMIL file wallclock buffer overflow
2007-06-29 00:00:00
zdi
zdi
RealNetworks RealPlayer SWF Processing Remote Code Execution Vulnerability
2007-11-02 00:00:00
RealPlayer RA Field Size File Processing Heap Overflow Vulnerability
2007-10-31 00:00:00
checkpoint_advisories
checkpoint_advisories
RealNetworks Multiple Products SMIL wallclock Stack Overflow (CVE-2007-3410)
2009-10-04 00:00:00
RealNetworks RealPlayer Multiple Products RA File Processing Heap Overflow (CVE-2007-2264)
2010-02-17 00:00:00
RealNetworks RealPlayer RealMedia File Format Processing Heap Corruption (CVE-2007-5081)
2010-02-17 00:00:00
prion
prion
Stack overflow
2007-06-26 22:30:00
Heap overflow
2007-10-31 17:46:00
Heap overflow
2007-10-31 17:46:00
cve
cve
CVE-2007-2263
2007-10-31 17:46:00
CVE-2007-3410
2007-06-26 22:30:00
CVE-2007-2264
2007-10-31 17:46:00
seebug
seebug
RealPlayer/HelixPlayer ParseWallClockValue函数栈缓冲区溢出漏洞
2007-06-28 00:00:00
gentoo
gentoo
RealPlayer: Buffer overflow
2007-09-14 00:00:00
centos
centos
HelixPlayer security update
2007-06-28 09:45:28

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.963 High

EPSS

Percentile

99.4%

JSON
Related for RHSA-2007:0841
openvas6nessus10freebsd1securityvulns5redhat1d21cert1ubuntucve4fedora1oraclelinux1saint4zdi2checkpoint_advisories3prion4cve4seebug1gentoo1centos1