RealNetworks RealPlayer Multiple Vulnerabilities August13 (Mac OS X) Network Vulnerability

Summary

The host is installed with RealPlayer and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow remote unauthenticated attacker to obtain sensitive information, cause a denial of service condition, or execute arbitrary code with the privileges of the application.

Solution

Upgrade to version 12.0.1.1738 or later, For updates refer to http://www.real.com/player

Insight

Flaws are due to errors when handling filenames in RMP and when parsing RealMedia files.

Affected

RealPlayer version prior to 12.0.1.1738 on Mac OS X.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/54621
http://service.real.com/realplayer/security/08232013_player/en
http://www.kb.cert.org/vuls/id/246524
http://www.osvdb.com/96617

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-4973, CVE-2013-4974
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe AIR Multiple Vulnerabilities-01 Aug14 (Windows)
Adobe AIR Multiple Vulnerabilities-01 Sep13 (Mac OS X)
Adobe Acrobat and Reader Multiple Vulnerabilities -July10 (Windows)
Adobe Air Multiple Vulnerabilities -01 August 12 (Mac OS X)
Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Mac OS X)

Take action and discover your vulnerabilities