Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 APP:REAL:REALTEXT-ERR-OF

Severity

 Medium

Recommended

 No

Recommended Action

 Drop

Category

 APP

Keywords

 RealNetworks RealText Error Message Buffer Overflow

Release Date

 2005/07/01

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: RealNetworks RealText Error Message Buffer Overflow


This signature detects attempts to exploit a known vulnerability against RealNetworks RealText. RealPlayer versions 1.6 and earlier are vulnerable. Attackers can craft malicious documents containing invalid version and name information. A successful attack can allow a remote attacker to execute arbitrary code and create files on the target client's system.

Extended Description

RealPlayer is prone to a remote heap-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. Specifically, the application fails to bounds-check user-supplied data contained in RealText files, resulting in the possibility of overflowing a heap buffer. Attackers can control the contents of critical memory control structures and write arbitrary data to arbitrary memory locations. Exploiting this issue allows attackers to execute arbitrary machine code in the context of the user running the affected application.

Affected Products

  • Gentoo Linux
  • Real Networks Helix Player for Linux 1.0.4
  • Real Networks RealOne Player 1.0.0
  • Real Networks RealOne Player 2.0.0
  • Real Networks RealPlayer 10.0.0
  • Real Networks RealPlayer 10.0.0 BETA
  • Real Networks RealPlayer 10.0.0 v6.0.12.690
  • Real Networks RealPlayer 10.5.0
  • Real Networks RealPlayer 10.5.0 Beta v6.0.12.1016
  • Real Networks RealPlayer 10.5.0 V6.0.12.1040
  • Real Networks RealPlayer 10.5.0 V6.0.12.1053
  • Real Networks RealPlayer 10.5.0 V6.0.12.1056
  • Real Networks RealPlayer 10.5.0 V6.0.12.1059
  • Real Networks RealPlayer 10.5.0 V6.0.12.1069
  • Real Networks RealPlayer 6.0.0 Unix
  • Real Networks RealPlayer 6.0.0 Win32
  • Real Networks RealPlayer 7.0.0 Mac
  • Real Networks RealPlayer 7.0.0 Unix
  • Real Networks RealPlayer 7.0.0 Win32
  • Real Networks RealPlayer 8.0.0 Mac
  • Real Networks RealPlayer 8.0.0 Unix
  • Real Networks RealPlayer 8.0.0 Win32
  • Real Networks RealPlayer G2
  • Real Networks RealPlayer 10 English
  • Real Networks RealPlayer 10 German
  • Real Networks RealPlayer 10 Japanese
  • Real Networks RealPlayer 10 for Linux
  • Real Networks RealPlayer 10 for Mac OS 10.0.0 .0.331
  • Real Networks RealPlayer 10 for Mac OS 10.0.0.305
  • Real Networks RealPlayer 10 for Mac OS 10.0.0.325
  • Real Networks RealPlayer 10 for Mac OS beta
  • Real Networks RealPlayer 10 for Mac OS
  • Real Networks RealPlayer 8
  • Real Networks RealPlayer Enterprise 1.1.0
  • Real Networks RealPlayer Enterprise 1.2.0
  • Real Networks RealPlayer Enterprise 1.5.0
  • Real Networks RealPlayer Enterprise 1.6.0
  • Real Networks RealPlayer Enterprise 1.7.0
  • Real Networks RealPlayer Enterprise
  • Real Networks RealPlayer For Unix 10.0.3
  • Real Networks RealPlayer For Unix 10.0.4
  • Real Networks RealPlayer for Windows 7.0.0
  • Real Networks RealPlayer Intranet 7.0.0
  • Real Networks RealPlayer Intranet 8.0.0
  • Red Hat Desktop 3.0.0
  • Red Hat Desktop 4.0.0
  • Red Hat Enterprise Linux AS 3
  • Red Hat Enterprise Linux AS 4
  • Red Hat Enterprise Linux ES 3
  • Red Hat Enterprise Linux ES 4
  • Red Hat Enterprise Linux WS 3
  • Red Hat Enterprise Linux WS 4
  • Red Hat Fedora Core3
  • Red Hat Fedora Core4
  • SuSE Linux Desktop 1.0.0
  • SuSE Linux Personal 8.2.0
  • SuSE Linux Personal 9.0.0
  • SuSE Linux Personal 9.0.0 X86 64
  • SuSE Linux Personal 9.1.0
  • SuSE Linux Personal 9.1.0 X86 64
  • SuSE Linux Personal 9.2.0
  • SuSE Linux Personal 9.2.0 X86 64
  • SuSE Linux Personal 9.3.0
  • SuSE Linux Personal 9.3.0 X86 64
  • SuSE Linux Professional 8.2.0
  • SuSE Linux Professional 9.0.0
  • SuSE Linux Professional 9.0.0 X86 64
  • SuSE Linux Professional 9.1.0
  • SuSE Linux Professional 9.1.0 X86 64
  • SuSE Linux Professional 9.2.0
  • SuSE Linux Professional 9.2.0 X86 64
  • SuSE Linux Professional 9.3.0
  • SuSE Linux Professional 9.3.0 X86 64
  • SuSE Novell Linux Desktop 9.0.0
  • SuSE Open-Enterprise-Server 9.0.0
  • SuSE SUSE Linux Enterprise Server 8
  • SuSE SUSE Linux Enterprise Server 9
  • SuSE SuSE Linux Openexchange Server 4.0.0
  • SuSE SUSE LINUX Retail Solution 8.0.0
  • SuSE SuSE Linux School Server for i386
  • SuSE SuSE Linux Standard Server 8.0.0

References

  • BugTraq: 14048
  • CVE: CVE-2005-1766
  • URL: http://www.idefense.com/application/poi/display?id=250&type=vulnerabilities
  • URL: http://service.real.com/help/faq/security/050623_player/EN/

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out