RealNetworks RealPlayer Multiple Buffer Overflow Vulnerabilities July14 (Windows) Network Vulnerability

Summary

The host is installed with RealPlayer and is prone to multiple buffer overflow vulnerabilities.

Impact

Successful exploitation will allow remote attackers to cause a buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code. Impact Level: System/Application

Solution

Upgrade to RealNetworks RealPlayer version 17.0.10.8 or later. For updates refer http://www.real.com

Insight

Flaw is due to improper validation when handling corrupt index types or incorrect media sample sizes.

Affected

RealNetworks RealPlayer before version 17.0.10.8 on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/59238
http://service.real.com/realplayer/security/06272014_player/en/
http://www.fortiguard.com/advisory/RealNetworks-RealPlayer-Memory-Corruption/
http://www.osvdb.com/108615

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-3113
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Apple QuickTime Multiple Buffer Overflow Vulnerabilities (Windows)
ActiveFax RAW Server Multiple Buffer Overflow Vulnerabilities
Alleycode HTML Editor Buffer Overflow Vulnerabilities
Adobe Reader/Acrobat Multiple BOF Vulnerabilities - Jun09 (Win)
ALLMediaServer Request Handling Buffer Overflow Vulnerability

Take action and discover your vulnerabilities