Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0258

Overview

Vulnerability Score 7.6 7.6
CVE Id CVE-2004-0258
Last Modified 07 Mar 2011 09:15:33
Published 23 Nov 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2004-0258

Summary

Multiple buffer overflows in RealOne Player, RealOne Player 2.0, RealOne Enterprise Desktop, and RealPlayer Enterprise allow remote attackers to execute arbitrary code via malformed (1) .RP, (2) .RT, (3) .RAM, (4) .RPM or (5) .SMIL files.

Vulnerable Systems

Application

  • Realnetworks Realone Desktop Manager

  • Realnetworks Realone Enterprise Desktop 6.0.11.774

  • Realnetworks Realone Player 1.0

  • Realnetworks Realone Player 2.0

  • Realnetworks Realone Player 6.0.11.818

  • Realnetworks Realone Player 6.0.11.830

  • Realnetworks Realone Player 6.0.11.841

  • Realnetworks Realone Player 6.0.11.853

  • Realnetworks Realone Player 6.0.11.868

  • Realnetworks Realplayer 10.0 Beta

  • Realnetworks Realplayer 8.0


References

CERT-VN - VU#473814

BID - 9579

BUGTRAQ - 20040204 Multiple File Format Vulnerabilities (Overruns) in REALOne & RealPlayer

XF - realoneplayer-multiple-file-bo(15040)

CONFIRM - http://www.service.real.com/help/faq/security/040123_player/EN/

MISC - http://www.nextgenss.com/advisories/realone.txt

CIAC - O-075

VULNWATCH - 20040204 [VulnWatch] Multiple File Format Vulnerabilities (Overruns) in REALOne & RealPlayer


Last Updated: 27 May 2016 10:38:32