scip AG

NASLDB: RealPlayer Enterprise for Windows < Build 6.0.12.1823 Multiple Vulnerabilities

General

ID: 50022
Name: RealPlayer Enterprise for Windows < Build 6.0.12.1823 Multiple Vulnerabilities

Summary: Checks RealPlayer Enterprise build number

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: –

Port: –
Family: Windows
Type: Local

Description

According to its build number, the installed version of RealPlayer on
the remote Windows host has multiple buffer overflow vulnerabilities :

– A ‘QCP’ parsing heap-based buffer overflow vulnerability
exists. (CVE-2010-2578)

– An uninitialized pointer vulnerability exists in the
CDDA URI ActiveX control. (CVE-2010-3747)

– A stack overflow vulnerability exists in the RichFX
component. (CVE-2010-3748)

– A parameter injection vulnerability exists in the
RecordClip browser extension. (CVE-2010-3749)

– A remote code execution vulnerability exists in
RJMDSections. (CVE-2010-3750)

Exploiting

Exploit Available: True
Exploitability Ease: Exploits are available

Sources

CVE: CVE-2010-2578
OSVDB: –
Bugtraq: 44441
scipID: –

Timeline

Vulnerability Disclosure: 2010/10/15
Patch Release: 2010/10/15
Plugin Release: 2010/10/19

Plugin

Version: 1.11
Filename: realplayer_enterprise_6_0_12_1823.nasl
Filesize: 4353 bytes
MD5 Hash: 0dc8a317beac6ac7a498c2720a97ed8a

Identification: SMB/RealPlayer/Version
Require Keys: SMB/RealPlayer/Product", "SMB/RealPlayer/Build
Dependencies: "realplayer_detect.nasl"

Copyright: This script is Copyright© 2010-2011 Tenable Network Security, Inc.

Letzte Plugins

• Letzte Plugins
  • USN-1611-1 : thunderbird vulnerabilities
  • USN-1610-1 : linux vulnerability
  • USN-1609-1 : linux-ti-omap4 vulnerability
  • SuSE 10 Security Update : PostgreSQL
  • RHSA-2012-1364: bind97
  • RHSA-2012-1363: bind
  • RHSA-2012-1362: thunderbird
  • RHSA-2012-1361: xulrunner
  • Mandriva Linux Security Advisory : graphicsmagick
  • FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack

• Archiv
• scip VulDB
• Syndication
  • RSS
  • Twitter