Test ID:	1.3.6.1.4.1.25623.1.0.15789
Category:	Windows
Title:	RealPlayer Skin File Remote Buffer Overflow
Summary:	Determines the version of RealPlayer
Description:	The remote host has RealPlayer installed. There is a flaw in the remote version of this software which may allow an attacker to execute arbitrary code on the remote host, with the privileges of the user running RealPlayer. To do so, an attacker would need to send a corrupted skin file to a remote user and have him open it using RealPlayer. Solution : Upgrade to the newest version of this software If you have uninstalled RealPlayer you may wish to delete the old registry key at SOFTWARE\RealNetworks\RealPlayer. Risk factor : High
Cross-Ref:	BugTraq ID: 11555 Common Vulnerability Exposure (CVE) ID: CVE-2004-1094 Bugtraq: 20041027 EEYE: RealPlayer Zipped Skin File Buffer Overflow (Google Search) http://archives.neohapsis.com/archives/fulldisclosure/2004-10/1044.html Bugtraq: 20041027 High Risk Vulnerability in RealPlayer (Google Search) http://marc.theaimsgroup.com/?l=bugtraq&m=109894226007607&w=2 Bugtraq: 20051223 dtSearch DUNZIP32.dll Buffer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/archive/1/420274/100/0/threaded Bugtraq: 20060330 McAfee VirusScan DUNZIP32.dll Buffer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/archive/1/429361/100/0/threaded Bugtraq: 20060906 IBM Lotus Notes DUNZIP32.dll Buffer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/archive/1/445369/100/0/threaded http://www.networksecurity.fi/advisories/payroll.html http://www.networksecurity.fi/advisories/multiledger.html http://www.networksecurity.fi/advisories/dtsearch.html http://www.networksecurity.fi/advisories/mcafee-virusscan.html http://www.securiteam.com/windowsntfocus/6Z00W00EAM.html http://www.networksecurity.fi/advisories/lotus-notes.html CERT/CC vulnerability note: VU#582498 http://www.kb.cert.org/vuls/id/582498 http://www.securityfocus.com/bid/11555 http://www.vupen.com/english/advisories/2005/2057 http://www.vupen.com/english/advisories/2006/1176 http://www.osvdb.org/19906 http://securitytracker.com/id?1011944 http://securitytracker.com/id?1012297 http://securitytracker.com/id?1016817 http://secunia.com/advisories/17096 http://secunia.com/advisories/17394 http://secunia.com/advisories/18194 http://secunia.com/advisories/19451 http://securityreason.com/securityalert/296 http://securityreason.com/securityalert/653 XForce ISS Database: realplayer-dunzip32-bo(17879) http://xforce.iss.net/xforce/xfdb/17879 XForce ISS Database: payroll-dunzip32-bo(22737) http://xforce.iss.net/xforce/xfdb/22737
Copyright	This script is Copyright (C) 2004 Tenable Network Security

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: