Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 APP:REAL:PLAYER-MAL-SKIN

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 APP

Keywords

 RealPlayer Malicious Skin Download

Release Date

 2004/11/03

Update Number

 1213

Supported Platforms

 di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: RealPlayer Malicious Skin Download


This signature detects attempts to exploit a known vulnerability against RealPlayer. Attackers can craft a malicious skin file, which if a user downloads, allows the attacker to execute arbitrary code in the context of the user.

Extended Description

DynaZip is susceptible to a stack-based buffer-overflow vulnerability. This issue is due to the library's failure to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. A remote attacker may exploit this vulnerability to execute arbitrary instructions in the context of an application that uses the affected library. The following applications are known to include vulnerable versions of the affected library: - RealPlayer for Microsoft Windows - RealOne Player for Microsoft Windows - CheckMark Payroll 2004/2005. Other applications also likely include the vulnerable library.

Affected Products

  • CheckMark Software Inc. CheckMark Payroll 3.9.1
  • CheckMark Software Inc. CheckMark Payroll 3.9.2
  • CheckMark Software Inc. CheckMark Payroll 3.9.3
  • CheckMark Software Inc. CheckMark Payroll 3.9.4
  • CheckMark Software Inc. CheckMark Payroll 3.9.5
  • CheckMark Software Inc. CheckMark Payroll 3.9.6
  • CheckMark Software Inc. MultiLedger 6.0.3
  • CheckMark Software Inc. MultiLedger 7.0.0
  • dtSearch Corp dtSearch 5.25.0
  • dtSearch Corp dtSearch 6.5.0 Build 6608
  • dtSearch Corp dtSearch with Spider 7.10.0 Build 7045
  • dtSearch Corp dtSearch with Spider
  • IBM Lotus Notes 6.5.0
  • IBM Lotus Notes 6.5.1
  • IBM Lotus Notes 6.5.2
  • IBM Lotus Notes 6.5.3
  • IBM Lotus Notes 6.5.4
  • InnerMedia DynaZip Library 3.0.0 .0.14
  • InnerMedia DynaZip Library 5.00.00
  • InnerMedia DynaZip Library 5.00.01
  • InnerMedia DynaZip Library 5.00.02
  • InnerMedia DynaZip Library 5.00.03
  • McAfee SecurityCenter Agent 6.0.0.16
  • McAfee VirusScan 10.0.21
  • Real Networks RealOne Player 1.0.0
  • Real Networks RealOne Player 2.0.0
  • Real Networks RealPlayer 10.0.0
  • Real Networks RealPlayer 10.0.0 BETA
  • Real Networks RealPlayer 10.0.0 v6.0.12.690
  • Real Networks RealPlayer 10.5.0
  • Real Networks RealPlayer 10.5.0 Beta v6.0.12.1016
  • Real Networks RealPlayer 10.5.0 V6.0.12.1040
  • Real Networks RealPlayer 10.5.0 V6.0.12.1053

References

  • BugTraq: 15382
  • BugTraq: 11555
  • CVE: CVE-2005-2630
  • CVE: CVE-2004-1094
  • URL: http://www.securitytracker.com/alerts/2004/Oct/1011944.html
  • URL: http://service.real.com/help/faq/security/041026_player/EN/

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out