RealNetworks RealPlayer Multiple Vulnerabilities August13 (Mac OS X) Network Vulnerability

Summary

The host is installed with RealPlayer and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow remote unauthenticated attacker to obtain sensitive information, cause a denial of service condition, or execute arbitrary code with the privileges of the application.

Solution

Upgrade to version 12.0.1.1738 or later, For updates refer to http://www.real.com/player

Insight

Flaws are due to errors when handling filenames in RMP and when parsing RealMedia files.

Affected

RealPlayer version prior to 12.0.1.1738 on Mac OS X.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/54621
http://service.real.com/realplayer/security/08232013_player/en
http://www.kb.cert.org/vuls/id/246524
http://www.osvdb.com/96617

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-4973, CVE-2013-4974

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Flash Media Server Multiple Remote Security Vulnerabilities
Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)
Adobe Acrobat Multiple Vulnerabilities - Windows
Adobe AIR Multiple Vulnerabilities -01 April 13 (Windows)

Take action and discover your vulnerabilities