SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#770904

RealNetworks players SMIL "wallclock" buffer overflow

Overview

A buffer overflow in RealNetworks media players could allow a remote attacker to execute arbitrary code on an affected system.

I. Description

The RealNetworks RealPlayer and Helix Player applications allow users to view local and remote audio and video content. These players support multiple media formats including the synchronized multimedia integration language (SMIL). A stack-based buffer overflow exists in the way that these players handle the "wallclock-sync" values encoded in the SMIL data. A remote attacker with the ability to supply a specially crafted media file or stream could exploit this vulnerability to execute arbitrary code on an affected system.

Note that we are aware of publicly-available exploit code for this vulnerability.

II. Impact

A remote unauthenticated attacker could execute arbitrary code with the privileges of the user running a vulnerable application or cause the vulnerable application to crash, resulting in a denial of service.

III. Solution

Apply an update from the vendor


The latest versions of the affected software available at the time of this writing are reported to contain a patch for this issue. Users of RealPlayer are encouraged to take the following steps to update:

  • Windows users are encouraged to follow the steps outlined in RealNetworks support document Answer ID 6929
  • RealPlayer for Mac OS X users should take the following steps:
    1. Go the RealPlayer menu.
    2. Choose Check for Update.
    3. Select the box next to the "RealPlayer 10 Latest Release" component.
    4. Click Install to download and install the update

Systems Affected
VendorStatusDate NotifiedDate Updated
RealNetworks, Inc.Vulnerable28-Jun-2007
Red Hat, Inc.Vulnerable27-Jun-2007

References


http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=547

Credit

This vulnerability was reported by iDefense Labs in iDefense Labs Public Advisory: 06.26.07. iDefense credits an anonymous researcher with reporting this vulnerability to them.

This document was written by Chad R Dougherty.

Other Information

Date Public:2007-06-26
Date First Published:2007-06-28
Date Last Updated:2007-06-28
CERT Advisory: 
CVE-ID(s):CVE-2007-3410
NVD-ID(s):CVE-2007-3410
US-CERT Technical Alerts: 
Metric:22.27
Document Revision:5

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Produced 2007 by US-CERT, a government organization
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader