Title: Multiple RealPlayer/RealOne Player Supported File Type Buffer Overrun Vulnerabilities
Severity: HIGH
Description:
RealPlayer/RealOne Player are media players that are available for various operating systems, including Microsoft Windows and Mac OS.
It has been reported that various RealPlayer/RealOne Player releases are prone to multiple exploitable stack and heap overrun vulnerabilities. This is due to insufficient bounds checking when handling malformed files of various supported file types (.RP, .RT, .RAM, .RPM and .SMIL). When the player loads such a file, stack or heap memory may be corrupted with embedded data in the file, possibly allowing for sensitive variables in memory to be overwritten. In this manner, it would be possible to execute arbitrary code on the client system in the context of the user invoking the vulnerable player.
This issue could be exploited by forcing a user to visit a malicious website that is hosting the file, causing it to be automatically invoked. File attachments also provide an attack vector, but would require the user to interactively upon the malformed file (with the exception of .RPM files, which may automatically open).
Affected Products:
- Real Networks RealOne Desktop Manager
- Real Networks RealOne Enterprise Desktop 6.0.11 .774
- Real Networks RealOne Player 1.0.0
- Real Networks RealOne Player 2.0.0
- Real Networks RealOne Player 6.0.11 .818
- Real Networks RealOne Player 6.0.11 .830
- Real Networks RealOne Player 6.0.11 .841
- Real Networks RealOne Player 6.0.11 .853
- Real Networks RealOne Player 6.0.11 .868
- Real Networks RealOne Player version 2.0 for Windows
- Real Networks RealPlayer 10.0.0 BETA
- Real Networks RealPlayer 8.0.0 Mac
- Real Networks RealPlayer 8.0.0 Unix
- Real Networks RealPlayer 8.0.0 Win32
- S.u.S.E. Linux 8.1.0
- S.u.S.E. Linux Desktop 1.0.0
- S.u.S.E. Linux Personal 8.2.0
- S.u.S.E. Linux Personal 9.0.0
- S.u.S.E. Linux Personal 9.0.0 x86_64
- S.u.S.E. Linux Personal 9.1.0
References:
- Real Networks: Real Networks Homepage
- Real Networks: RealNetworks, Inc. Releases Update to Address Security Vulnerabilities.
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
