ID CVE-2008-1309
Summary The RealAudioObjects.RealAudio ActiveX control in rmoc3260.dll in RealNetworks RealPlayer Enterprise, RealPlayer 10, RealPlayer 10.5 before build 6.0.12.1675, and RealPlayer 11 before 11.0.3 build 6.0.14.806 does not properly manage memory for the (1) Console or (2) Controls property, which allows remote attackers to execute arbitrary code or cause a denial of service (browser crash) via a series of assignments of long string values, which triggers an overwrite of freed heap memory.
References
Vulnerable Configurations
  • cpe:2.3:a:realnetworks:realplayer:*:*:enterprise:*:*:*:*:*
    cpe:2.3:a:realnetworks:realplayer:*:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*
    cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:realnetworks:realplayer:10.5:*:*:*:*:*:*:*
    cpe:2.3:a:realnetworks:realplayer:10.5:*:*:*:*:*:*:*
  • cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*
    cpe:2.3:a:realnetworks:realplayer:11:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 11-10-2018 - 20:31)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
bid 28157
bugtraq 20080725 ZDI-08-047: RealNetworks RealPlayer rmoc3260 ActiveX Control Memory Corruption Vulnerability
cert-vn VU#831457
confirm http://service.real.com/realplayer/security/07252008_player/en/
exploit-db 5332
fulldisc 20080310 Real Networks RealPlayer ActiveX Control Heap Corruption
misc http://www.zerodayinitiative.com/advisories/ZDI-08-047/
sectrack
  • 1019576
  • 1020563
secunia 29315
vupen
  • ADV-2008-0842
  • ADV-2008-2194
xf realplayer-realaudioobjects-code-execution(41087)
statements via4
contributor Mark J Cox
lastmodified 2008-03-18
organization Red Hat
statement Not vulnerable. This issue did not affect versions of RealPlayer as shipped with Red Hat Enterprise Linux 3 Extras, 4 Extras, or 5 Supplementary.
Last major update 11-10-2018 - 20:31
Published 12-03-2008 - 17:44
Back to Top