RealNetworks RealPlayer ASM RuleBook BOF Vulnerability (Linux) Network Vulnerability

Summary

This host is installed with RealPlayer which is prone to Buffer Overflow vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes within the context of the application and can cause heap overflow or cause remote code execution.

Solution

Upgrade to RealPlayer version 11.0.5 or later. For updates refer to http://www.real.com/player

Insight

The buffer overflow error occurs when processing a malformed 'ASM RuleBook'.

Affected

RealPlayer versions 10.x and 11.0.0 on Linux platforms.

References

http://secunia.com/advisories/38218
http://service.real.com/realplayer/security/01192010_player/en/
http://www.vupen.com/english/advisories/2010/0178
http://xforce.iss.net/xforce/xfdb/55794

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4247
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Flash Player Buffer Overflow Vulnerability (Mac OS X)
Citrix Provisioning Services SoapServer Buffer Overflow Vulnerability
Buffer Overflow Vulnerability in Adobe Acrobat and Reader (Win)
Apache mod_proxy content-length buffer overflow
Adobe Flash Professional JPG Object Processing BOF Vulnerability (Mac OS X)

Take action and discover your vulnerabilities