HTTP: RealPlayer FLV Memory Corruption
This signature detects attempts to exploit a known vulnerability against RealPlayer FLV decoder. A successful attack can lead to arbitrary code execution.
Extended Description
Real Networks RealPlayer & RealPlayer SP are prone to multiple security vulnerabilities, including remote code-execution issues, an unauthorized access issue, a potential denial-of-service issue, and an unspecified issue. Successful exploits will allow remote attackers to execute arbitrary code within the context of the affected application, cause denial-of-service conditions, or access files without proper authorization. Other attacks may also be possible. RealPlayer 11.1 and RealPlayer SP 1.1.4 and prior are vulnerable.
Affected Products
Real_networks realplayer_11_beta
References
BugTraq: 42775
CVE: CVE-2010-2996
URL: http://service.real.com/realplayer/security/08262010_player/en/ http://www.zerodayinitiative.com/advisories/ZDI-10-166/ http://www.zerodayinitiative.com/advisories/ZDI-10-167 http://www.realnetworks.com/ http://secunia.com/secunia_research/2010-8/ http://secunia.com/secunia_research/2010-3/ http://secunia.com/secunia_research/2010-5/
Short Name
HTTP:STC:SWF:REAL-FLV
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2010-0116 CVE-2010-0117 CVE-2010-0120 CVE-2010-2996 CVE-2010-3000 CVE-2010-3001 CVE-2010-3002 Corruption FLV Memory RealPlayer bid:42775
Release Date
11/19/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Real_networks
CVSS Score
9.3