Test ID:	1.3.6.1.4.1.25623.1.0.54923
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 200504-21 (RealPlayer)
Summary:	The remote host is missing updates announced in;advisory GLSA 200504-21.
Description:	Summary: The remote host is missing updates announced in advisory GLSA 200504-21. Vulnerability Insight: RealPlayer and Helix Player are vulnerable to a buffer overflow that could lead to remote execution of arbitrary code. Solution: All RealPlayer users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=media-video/realplayer-10.0.4' All Helix Player users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=media-video/helixplayer-1.0.4' CVSS Score: 5.1 CVSS Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0755 20050420 RealNetworks RealPlayer/RealOne Player/Helix Player Remote Heap Overflow http://marc.info/?l=bugtraq&m=111401615202987&w=2 FEDORA-2005-329 http://www.redhat.com/archives/fedora-announce-list/2005-April/msg00040.html RHSA-2005:363 http://www.redhat.com/support/errata/RHSA-2005-363.html RHSA-2005:392 http://www.redhat.com/support/errata/RHSA-2005-392.html RHSA-2005:394 http://www.redhat.com/support/errata/RHSA-2005-394.html http://pb.specialised.info/all/adv/real-ram-adv.txt http://service.real.com/help/faq/security/050419_player/EN/ oval:org.mitre.oval:def:11205 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11205
Copyright	Copyright (C) 2008 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.