RealNetworks RealPlayer ASM RuleBook BOF Vulnerability (Linux) Network Vulnerability

Summary

This host is installed with RealPlayer which is prone to Buffer Overflow vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes within the context of the application and can cause heap overflow or cause remote code execution.

Solution

Upgrade to RealPlayer version 11.0.5 or later. For updates refer to http://www.real.com/player

Insight

The buffer overflow error occurs when processing a malformed 'ASM RuleBook'.

Affected

RealPlayer versions 10.x and 11.0.0 on Linux platforms.

References

http://secunia.com/advisories/38218
http://service.real.com/realplayer/security/01192010_player/en/
http://www.vupen.com/english/advisories/2010/0178
http://xforce.iss.net/xforce/xfdb/55794

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4247

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

CA Internet Security Suite Plus 'KmxSbx.sys' Buffer Overflow Vulnerability
DesignWorks Professional '.cct' File BOF Vulnerability
Citrix Provisioning Services 'streamprocess.exe' Component Remote Code Execution Vulnerability
Adobe Reader 'XFDF' File Buffer Overflow Vulnerability (Mac OS X)
BigAntSoft BigAnt IM Message Server Multiple Vulnerabilities

Take action and discover your vulnerabilities