RealNetworks RealPlayer Multiple Vulnerabilities August13 (Windows) Network Vulnerability

Summary

The host is installed with RealPlayer and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow remote unauthenticated attacker to obtain sensitive information, cause a denial of service condition, or execute arbitrary code with the privileges of the application.

Solution

Upgrade to version 16.0.3.51 or later, For updates refer to http://www.real.com/player

Insight

Flaws are due to errors when handling filenames in RMP and when parsing RealMedia files.

Affected

RealPlayer version prior to 16.0.3.51 on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/54621
http://service.real.com/realplayer/security/08232013_player/en
http://www.kb.cert.org/vuls/id/246524
http://www.osvdb.com/96617

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-4973, CVE-2013-4974

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Linux)
Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Mac OS X)
Adobe Air Multiple Vulnerabilities - November12 (Mac OS X)
Adobe Air Multiple Vulnerabilities -01 August 12 (Mac OS X)
Adobe Acrobat Multiple Vulnerabilities-01 Dec14 (Mac OS X)

Take action and discover your vulnerabilities