Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:STC:STREAM:REALPLAYER-MP3

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 RealNetworks RealPlayer MP3 Files Processing Buffer Overflow

Release Date

 2010/10/19

Update Number

 1794

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: RealNetworks RealPlayer MP3 Files Processing Buffer Overflow


This signature detects attempts to exploit a known remote buffer overflow vulnerability in RealNetworks RealPlayer application. It is due to boundary errors when processing Lyrics3 v2.00 tags in MP3 files. A remote attacker can exploit this by enticing the target user to open a crafted MP3 file. A successful attack causes a heap-based buffer overflow that can lead to arbitrary code execution in the security context of the logged in user. The behavior of the target is entirely dependent on the intended function of the injected code. In an unsuccessful attack, the affected RealPlayer or RealOne Player process terminates abnormally.

Extended Description

RealNetworks RealPlayer is prone to multiple memory-corruption vulnerabilities that arise when the application processes specially crafted files. Successfully exploiting these issues will allow remote attackers to execute arbitrary code within the context of the affected application. Failed exploit attempts will cause a denial-of-service condition.

Affected Products

  • Real Networks Helix Player for Linux 10.0.0.8
  • Real Networks Helix Player for Linux 10.0.5
  • Real Networks Helix Player for Linux 10.0.6
  • Real Networks Helix Player for Linux 10.0.7
  • Real Networks RealOne Player 1.0.0
  • Real Networks RealOne Player 2.0.0
  • Real Networks RealOne Player for Mac
  • Real Networks RealPlayer 10.0.0
  • Real Networks RealPlayer 10.5.0
  • Real Networks RealPlayer 10 for Linux 10.0.5
  • Real Networks RealPlayer 10 for Linux 10.0.6
  • Real Networks RealPlayer 10 for Linux 10.0.7
  • Real Networks RealPlayer 10 for Linux 10.0.8
  • Real Networks RealPlayer 10 for Mac OS 10.0.0 .0.331
  • Real Networks RealPlayer 10 for Mac OS 10.0.0.305
  • Real Networks RealPlayer 10 for Mac OS 10.0.0.325
  • Real Networks RealPlayer 10 for Mac OS 10.0.0.352
  • Real Networks RealPlayer 10 for Mac OS 10.0.0.396
  • Real Networks RealPlayer 10 for Mac OS 10.0.0.412
  • Real Networks RealPlayer 10 for Mac OS 10.0.0.481
  • Real Networks RealPlayer 8
  • Real Networks RealPlayer Enterprise

References

  • BugTraq: 26214
  • CVE: CVE-2007-5080

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out