Multiple stack-based buffer overflows in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12., allow remote attackers to execute arbitrary code via a long (1) version number or (2) encoding declaration in the XML declaration of an RMP file, a different issue than CVE-2013-6877.
rm movie file with a large length field for the data chunk, which leads to a heap-based buffer overflow. Integer overflow in pnen3260.dll in RealPlayer 8 through 10.5 (6.) and earlier, and RealOne Player 1 or 2 on Windows or Mac OS, allows remote attackers to execute arbitrary code via a SMIL file and a. This leads to arbitrary code execution.ģ Helix Player, Realone Player, Realplayer In Real Player 20.0.8.310, the G2 Control allows injection of unsafe javascript: URIs in local HTTP error pages (displayed by Internet Explorer core). This occurs because it is possible to plant executables in the startup folder (DLL planting could also occur). In Real Player 20.0.7.309 and 20.0.8.310, external::Import() allows download of arbitrary file types and Directory Traversal, leading to Remote Code Execution. It is also possible to reference arbitrary local files. It is possible to inject script code to arbitrary domains. This is an internal URL Protocol used by Real Player to reference a file that contains an URL. In Real Player 20.0.8.310, there is a DCP:// URI Remote Arbitrary Code Execution Vulnerability. In the case of an unsuccessful code execution attack, Internet Explorer may terminate abnormally.In Real Player through 20.1.0.312, attackers can execute arbitrary code by placing a UNC share pathname (for a DLL file) in a RAM file. The code in such a case would execute within the security context of the current user. In an attack case where code injection is successful, the behaviour of the target is entirely dependent on the intended function of the injected code. Successful attack could allow for arbitrary code execution with privileges of the currently logged on user.
Remote attackers can exploit this vulnerability by persuading the target user to view a malicious web page. The flaw is due to boundary error in the set/get mechanism of certain properties of these controls. A memory corruption vulnerability exists in RealNetworks RealPlayer ActiveX controls implemented in rmoc3260.dll.
The application is capable of playing back numerous multimedia file formats and various streaming protocols. RealPlayer is a media player application developed by RealNetworks, Inc.
0 kommentar(er)
