14 matches found
RealNetworks RealPlayer RMP File Stack Buffer Overflow (CVE-2013-6877)
A stack buffer overflow exists in RealNetworks RealPlayer. Successful exploitation could result in arbitrary code execution in the context of the currently logged in user. The vulnerability is due to an error when parsing the version and encoding attributes of the XML declaration statement. An...
RealNetworks RealPlayer RMP File Heap Buffer Overflow (CVE-2013-6877)
A heap buffer overflow exists in RealNetworks RealPlayer. The vulnerability is due an error when handling RMP files, overly long values for certain tags can result in a heap buffer overflow. A remote unauthenticated attacker could exploit this vulnerability by enticing a user to open a crafted RM...
Stack overflow
Multiple stack-based buffer overflows in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allow remote attackers to execute arbitrary code via a long 1 version number or 2 encoding declaration in the XML declaration of an RMP file, a different issue than...
RealPlayer for Windows < 17.0.4.61 RMP Buffer Overflow
According to its build number, the installed version of RealPlayer on the remote Windows host is earlier than 17.0.4.61. It is, therefore, affected by a buffer overflow vulnerability when handling the 'encoding', 'trackid', and 'version' attributes in RealPlayer Metadata Package RMP files that...
RealPlayer RMP File Version Attribute Buffer Overflow
Added: 12/27/2013 CVE: CVE-2013-6877 BID: 64398 OSVDB: 101356 Background RealNetworks RealPlayer includes an embedded player which plays media embedded in a web page. Problem RealNetworks Windows RealPlayer 17.0.2.206 and earlier versions are vulnerable to remote code execution due to improper...
RealPlayer RMP File Version Attribute Buffer Overflow
Added: 12/27/2013 CVE: CVE-2013-6877 BID: 64398 OSVDB: 101356 Background RealNetworks RealPlayer includes an embedded player which plays media embedded in a web page. Problem RealNetworks Windows RealPlayer 17.0.2.206 and earlier versions are vulnerable to remote code execution due to improper...
RealNetworks RealPlayer Version Attribute Buffer Overflow
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'RealNetworks RealPlayer Version Attribute Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow...
RealNetworks RealPlayer 16 Buffer Overflow
!/usr/bin/perl ----------------------------------------------------------------------------- Exploit Title: RealNetworks RealPlayer Version Attribute Buffer Overflow Date: Dec 20, 2013 Exploit Author: Gabor Seljan Vendor Homepage: http://www.real.com Software Link:...
CORE-2013-0903 - RealPlayer Heap-based Buffer Overflow Vulnerability
Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ RealPlayer Heap-based Buffer Overflow Vulnerability 1. Advisory Information Title: RealPlayer Heap-based Buffer Overflow Vulnerability Advisory ID: CORE-2013-0903 Advisory URL:...
RealNetworks RealPlayer 16.0.3.51/16.0.2.32 - (.rmp) Version Attribute Buffer Overflow
Exploit for windows platform in category local exploits !/usr/bin/perl ----------------------------------------------------------------------------- Exploit Title: RealNetworks RealPlayer Version Attribute Buffer Overflow Date: Dec 20, 2013 Exploit Author: Gabor Seljan Vendor Homepage:...
RealPlayer Heap-Based Buffer Overflow
Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ RealPlayer Heap-based Buffer Overflow Vulnerability 1. Advisory Information Title: RealPlayer Heap-based Buffer Overflow Vulnerability Advisory ID: CORE-2013-0903 Advisory URL:...
RealPlayer Heap-based Buffer Overflow Vulnerability
Exploit for windows platform in category local exploits Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ RealPlayer Heap-based Buffer Overflow Vulnerability 1. Advisory Information Title: RealPlayer Heap-based Buffer Overflow Vulnerability Advisory ID: CORE-2013-0903 Advisory...
RealPlayer 'RMP'文件处理远程堆缓冲区溢出漏洞
BUGTRAQ ID: 64398 CVECAN ID: CVE-2013-6877 RealPlayer是网上收听收看实时音频、视频和Flash的工具。 RealPlayer 16.0.2.32、16.0.3.51版本处理RMP文件时存在安全漏洞,远程攻击者可诱使客户端用户打开特制的RMP文件,利用此漏洞执行任意代码。 0 Real Networks RealPlayer 16.0.3.51 Real Networks RealPlayer 16.0.2.32 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
RealPlayer Heap-based Buffer Overflow Vulnerability
Advisory ID Internal CORE-2013-0903 1. Advisory Information Title: RealPlayer Heap-based Buffer Overflow Vulnerability Advisory ID: CORE-2013-0903 Advisory URL:https://www.coresecurity.com/core-labs/advisories/realplayer-heap-based-buffer-overflow-vulnerability Date published: 2013-12-17 Date of...