TITLE: RealPlayer WAV and SMIL File Handling Buffer Overflows SECUNIA ADVISORY ID: SA14456
VERIFY ADVISORY: http://secunia.com/advisories/14456/ CRITICAL: Highly critical IMPACT: System access WHERE: >From remote SOFTWARE: Helix Player 1.x http://secunia.com/product/3970/ RealOne Player v1 http://secunia.com/product/666/ RealOne Player v2 http://secunia.com/product/2378/ RealPlayer 10.x http://secunia.com/product/2968/ RealPlayer 8 http://secunia.com/product/665/ RealPlayer Enterprise 1.x http://secunia.com/product/3342/ DESCRIPTION: Two vulnerabilities have been reported in various RealNetworks products, which can be exploited by malicious people to compromise a user's system. 1) A boundary error within the processing of WAV files can be exploited to cause a buffer overflow via a specially crafted WAV file. 2) A boundary error within the processing of SMIL files can be exploited to cause a stack-based buffer overflow via a specially crafted SMIL file. Successful exploitation of the vulnerabilities allows execution of arbitrary code. SOLUTION: Apply patches. RealOne / RealPlayer for Windows and Mac: Patches are available via the "Check for Update" feature. RealPlayer Enterprise: http://service.real.com/help/faq/security/security022405.html Linux Players: RealPlayer 10: http://www.real.com/linux Helix Player: http://player.helixcommunity.org/downloads/ ORIGINAL ADVISORY: RealNetworks: http://service.real.com/help/faq/security/050224_player/EN/ iDEFENSE: http://www.idefense.com/application/poi/display?id=209&type=vulnerabilities ============= PCWorks Mailing List ================= Don't see your post? Check our posting guidelines & make sure you've followed proper posting procedures, http://pcworkers.com/rules.htm Contact list owner <[EMAIL PROTECTED]> Unsubscribing and other changes: http://pcworkers.com =====================================================
