RealNetworks RealPlayer Multiple Vulnerabilities August13 (Mac OS X) Network Vulnerability

Summary

The host is installed with RealPlayer and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow remote unauthenticated attacker to obtain sensitive information, cause a denial of service condition, or execute arbitrary code with the privileges of the application.

Solution

Upgrade to version 12.0.1.1738 or later, For updates refer to http://www.real.com/player

Insight

Flaws are due to errors when handling filenames in RMP and when parsing RealMedia files.

Affected

RealPlayer version prior to 12.0.1.1738 on Mac OS X.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/54621
http://service.real.com/realplayer/security/08232013_player/en
http://www.kb.cert.org/vuls/id/246524
http://www.osvdb.com/96617

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-4973, CVE-2013-4974

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Sandbox Bypass Vulnerability - Aug14 (Windows)
Adobe AIR Multiple Vulnerabilities(APSB14-22)-(Windows)
Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Mac OS X
Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Windows)
Adobe AIR Multiple Vulnerabilities -01 Feb13 (Windows)

Take action and discover your vulnerabilities