CVE-2008-1309

Sažetak

The RealAudioObjects.RealAudio ActiveX control in rmoc3260.dll in RealNetworks RealPlayer Enterprise, RealPlayer 10, RealPlayer 10.5 before build 6.0.12.1675, and RealPlayer 11 before 11.0.3 build 6.0.14.806 does not properly manage memory for the (1) Console or (2) Controls property, which allows remote attackers to execute arbitrary code or cause a denial of service (browser crash) via a series of assignments of long string values, which triggers an overwrite of freed heap memory.

Reference

http://lists.grok.org.uk/pipermail/full-disclosure/2008-March/060659.html
http://secunia.com/advisories/29315
http://service.real.com/realplayer/security/07252008_player/en/
http://www.kb.cert.org/vuls/id/831457
http://www.securityfocus.com/archive/1/494779/100/0/threaded
http://www.securityfocus.com/bid/28157
http://www.securitytracker.com/id?1019576
http://www.securitytracker.com/id?1020563
http://www.vupen.com/english/advisories/2008/0842
http://www.vupen.com/english/advisories/2008/2194/references
http://www.zerodayinitiative.com/advisories/ZDI-08-047/
https://exchange.xforce.ibmcloud.com/vulnerabilities/41087
https://www.exploit-db.com/exploits/5332

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

11-10-2018 - 20:31

Objavljeno

12-03-2008 - 17:44