 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.11496 |
| Category: | Windows |
| Title: | RealPlayer PNG deflate heap corruption |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host has RealPlayer installed. There is a flaw in the remote version which may allow an attacker to execute arbitrary code on the remote host, with the privileges of the user running RealPlayer. To do so, an attacker would need to send a corrupted PNG file to a remote user and have him open it using RealPlayer. Solution : Go to http://service.real.com/help/faq/security/securityupdate_march2003.html If you have uninstalled RealPlayer you may wish to delete the old registry key at SOFTWARE\RealNetworks\RealPlayer. Risk factor : High |
| Cross-Ref: |
BugTraq ID: 7177 Common Vulnerability Exposure (CVE) ID: CVE-2003-0141 http://www.securityfocus.com/bid/7177 Bugtraq: 20030328 CORE-2003-0306: RealPlayer PNG deflate heap corruption vulnerability (Google Search) http://marc.info/?l=bugtraq&m=104887465427579&w=2 CERT/CC vulnerability note: VU#705761 http://www.kb.cert.org/vuls/id/705761 http://www.coresecurity.com/common/showdoc.php?idx=311&idxseccion=10 http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0156.html |
| Copyright | This script is Copyright (C) 2003 Renaud Deraison |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |