RealNetworks RealPlayer Multiple Vulnerabilities August13 (Windows) Network Vulnerability

Summary

The host is installed with RealPlayer and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow remote unauthenticated attacker to obtain sensitive information, cause a denial of service condition, or execute arbitrary code with the privileges of the application.

Solution

Upgrade to version 16.0.3.51 or later, For updates refer to http://www.real.com/player

Insight

Flaws are due to errors when handling filenames in RMP and when parsing RealMedia files.

Affected

RealPlayer version prior to 16.0.3.51 on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/54621
http://service.real.com/realplayer/security/08232013_player/en
http://www.kb.cert.org/vuls/id/246524
http://www.osvdb.com/96617

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-4973, CVE-2013-4974
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Multiple Vulnerabilities - Mac OS X
Adobe AIR Multiple Vulnerabilities-01 Aug14 (Mac OS X)
Adobe Dreamweaver Insecure Library Loading Vulnerability
Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Linux)
Adobe Acrobat Multiple Vulnerabilities-01 Dec14 (Mac OS X)

Take action and discover your vulnerabilities