Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:18984
HistoryJan 22, 2010 - 12:00 a.m.

RealPlayer皮肤和媒体文件解析多个缓冲区溢出漏洞

2010-01-2200:00:00
Root
www.seebug.org
18

0.509 Medium

EPSS

Percentile

97.2%

JSON

BUGTRAQ ID: 37880
CVE ID: CVE-2009-4241,CVE-2009-4242,CVE-2009-4243,CVE-2009-4244,CVE-2009-4245,CVE-2009-4257,CVE-2009-4248,CVE-2009-4247,CVE-2009-4246

RealPlayer是一款流行的多媒体播放器。

RealPlayer解析畸形的皮肤或媒体文件时存在多个缓冲区溢出漏洞,用户受骗打开了恶意的文件就可以触发这些漏洞,导致执行任意指令。

  1. 在解析包含有畸形ASMRuleBook结构的文件时可能将被破坏堆上的受控数据用作了对象指针,这可能导致堆溢出。

  2. 在解析SIPR codec字段时解析了过小的长度值就可能会分配不充分的堆,之后溢出这个缓冲区。

  3. 在解析带有伪造块大小的GIF文件时播放器错误的使用了来自文件的值用于在堆上分配缓冲区,可能导致堆溢出。

  4. 负责解析SMIL文件的smlrender.dll库缺少正确的字符串长度检查,可能导致溢出静态的堆缓冲区。

  5. 在解析.RJS皮肤文件时播放器将从web.xmb文件中所获得的某些变量长度字段拷贝到了静态大小的缓冲区中,这可能导致栈溢出。

  6. RealPlayer ASM RuleBook中的错误可能导致数组溢出。

  7. RealPlayer RTSP set_parameter中的错误可能导致缓冲区溢出。

Real Networks RealPlayer SP 1.0.1
Real Networks RealPlayer SP 1.0
Real Networks RealPlayer 11
Real Networks RealPlayer 10.x
厂商补丁:

Real Networks

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://service.real.com/realplayer/security/01192010_player/en/

Related

securityvulns 9
openvas 14
nessus 9
redhat 1
oraclelinux 1
centos 1
prion 9
zdi 5
cve 9
ubuntucve 9
securityvulns
securityvulns
RealNetworks RealPlayer multiple security vulnerabilities
2010-02-02 00:00:00
iDefense Security Advisory 02.01.10: Real Networks RealPlayer Compressed GIF Handling Integer Overflow
2010-02-02 00:00:00
ZDI-10-007: RealNetworks RealPlayer SMIL getAtom Remote Code Execution Vulnerability
2010-01-21 00:00:00
openvas
openvas
RealNetworks RealPlayer Multiple Code Execution Vulnerabilities (Linux)
2010-02-02 00:00:00
RealNetworks RealPlayer Multiple Code Execution Vulnerabilities (Windows)
2010-02-02 00:00:00
RealNetworks RealPlayer Multiple Code Execution Vulnerabilities - Linux
2010-02-02 00:00:00
nessus
nessus
RealPlayer for Windows < Build 12.0.0.319 Multiple Buffer Overflows
2010-01-22 00:00:00
Real Networks RealPlayer < RealPlayer SP 1.0.5 Multiple Vulnerabilities
2010-01-22 00:00:00
Oracle Linux 4 : HelixPlayer (ELSA-2010-0094)
2013-07-12 00:00:00
redhat
redhat
(RHSA-2010:0094) Critical: HelixPlayer security update
2010-02-09 00:00:00
oraclelinux
oraclelinux
HelixPlayer security update
2010-02-09 00:00:00
centos
centos
HelixPlayer security update
2010-02-09 17:22:40
prion
prion
Heap overflow
2010-01-25 19:30:00
Stack overflow
2010-01-25 19:30:00
Stack overflow
2010-01-25 19:30:00
zdi
zdi
RealNetworks RealPlayer SMIL getAtom Remote Code Execution Vulnerability
2010-01-21 00:00:00
RealNetworks RealPlayer ASMRulebook Remote Code Execution Vulnerability
2010-01-21 00:00:00
RealNetworks RealPlayer Skin Parsing Remote Code Execution Vulnerability
2010-01-21 00:00:00
cve
cve
CVE-2009-4257
2010-01-25 19:30:00
CVE-2009-4247
2010-01-25 19:30:00
CVE-2009-4246
2010-01-25 19:30:00
ubuntucve
ubuntucve
CVE-2009-4257
2010-01-25 00:00:00
CVE-2009-4245
2010-01-25 00:00:00
CVE-2009-4241
2010-01-25 00:00:00

0.509 Medium

EPSS

Percentile

97.2%

JSON
Related for SSV:18984
securityvulns9openvas14nessus9redhat1oraclelinux1centos1prion9zdi5cve9ubuntucve9