Vulnerabilities > CVE-2005-0611 - Unspecified vulnerability in Realnetworks Helix Player, Realone Player and Realplayer

CVSS 5.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

high complexity

realnetworks

nessus

NVD

Published: 2005-05-02

Updated: 2017-10-11

Summary

Heap-based buffer overflow in RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1, allows remote attackers to execute arbitrary code via .WAV files.

Vulnerable Configurations

Part	Description	Count
Application	Realnetworks Realnetworks Helix Player * Realnetworks Realone Player 1.0 Realnetworks Realone Player 2.0 Realnetworks Realplayer * Realnetworks Realplayer 8.0 Realnetworks Realplayer 10.0 Realnetworks Realplayer 10.5	7

Nessus

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2005-271.NASL
description	An updated HelixPlayer package that fixes two buffer overflow issues is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. HelixPlayer is a media player. A stack based buffer overflow bug was found in HelixPlayer
last seen	2020-06-01
modified	2020-06-02
plugin id	17269
published	2005-03-04
reporter	This script is Copyright (C) 2005-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/17269
title	RHEL 4 : HelixPlayer (RHSA-2005:271)

NASL family	SuSE Local Security Checks
NASL id	SUSE_SA_2005_014.NASL
description	The remote host is missing the patch for the advisory SUSE-SA:2005:014 (RealPlayer). Two security problems were found in the media player RealPlayer: - CVE-2005-0455: A buffer overflow in the handling of .smil files. - CVE-2005-0611: A buffer overflow in the handling of .wav files. Both buffer overflows can be exploited remotely by providing URLs opened by RealPlayer. More informations can be found on this URL: http://service.real.com/help/faq/security/050224_player/EN/ This updates fixes the problems.
last seen	2020-06-01
modified	2020-06-02
plugin id	17300
published	2005-03-09
reporter	This script is Copyright (C) 2005-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/17300
title	SUSE-SA:2005:014: RealPlayer

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2005-265.NASL
description	An updated RealPlayer package that fixes two buffer overflow issues is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. RealPlayer is a media player. A stack based buffer overflow bug was found in RealPlayer
last seen	2020-06-01
modified	2020-06-02
plugin id	17268
published	2005-03-04
reporter	This script is Copyright (C) 2005-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/17268
title	RHEL 4 : RealPlayer (RHSA-2005:265)

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2005-188.NASL
description	Updated HelixPlayer packages that fixes two buffer overflow issues are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. A stack based buffer overflow bug was found in HelixPlayer
last seen	2020-06-01
modified	2020-06-02
plugin id	19623
published	2005-09-12
reporter	This script is Copyright (C) 2005-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/19623
title	Fedora Core 3 : HelixPlayer-1.0.3-3.fc3 (2005-188)

NASL family	Windows
NASL id	REALPLAYER_MULTIPLE_VULNS.NASL
description	According to its build number, the installed version of RealPlayer / RealOne Player / RealPlayer Enterprise for Windows might allow an attacker to execute arbitrary code and delete arbitrary files on the remote host. To exploit these flaws, an attacker would send a malformed SMIL or WAV file to a user on the remote host and wait for him to open it.
last seen	2020-06-01
modified	2020-06-02
plugin id	17254
published	2005-03-02
reporter	This script is Copyright (C) 2005-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/17254
title	RealPlayer Multiple Remote Overflows (2005-03-01)

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2005-299.NASL
description	Updated realplayer packages that fix a number of security issues are now available for Red Hat Enterprise Linux 3 Extras. This update has been rated as having important security impact by the Red Hat Security Response Team. The realplayer package contains RealPlayer, a media format player. A number of security issues have been discovered in RealPlayer 8 of which a subset are believed to affect the Linux version as shipped with Red Hat Enterprise Linux 3 Extras. RealPlayer 8 is no longer supported by RealNetworks. Users of RealPlayer are advised to upgrade to this erratum package which contains RealPlayer 10.
last seen	2020-06-01
modified	2020-06-02
plugin id	17590
published	2005-03-21
reporter	This script is Copyright (C) 2005-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/17590
title	RHEL 3 : realplayer (RHSA-2005:299)

NASL family	FreeBSD Local Security Checks
NASL id	FREEBSD_PKG_C73305AE8CD711D99873000A95BC6FAE.NASL
description	Two exploits have been identified in the Linux RealPlayer client. RealNetworks states : RealNetworks, Inc. has addressed recently discovered security vulnerabilities that offered the potential for an attacker to run arbitrary or malicious code on a customer
last seen	2020-06-01
modified	2020-06-02
plugin id	19116
published	2005-07-13
reporter	This script is Copyright (C) 2005-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/19116
title	FreeBSD : realplayer -- remote heap overflow (c73305ae-8cd7-11d9-9873-000a95bc6fae)

Oval

accepted

2013-04-29T04:13:55.223-04:00

class

vulnerability

contributors

name Aharon Chernin
organization SCAP.com, LLC
name Dragos Prisaca
organization G2, Inc.

definition_extensions

comment The operating system installed on the system is Red Hat Enterprise Linux 4
oval oval:org.mitre.oval:def:11831
comment CentOS Linux 4.x
oval oval:org.mitre.oval:def:16636
comment Oracle Linux 4.x
oval oval:org.mitre.oval:def:15990

description

Heap-based buffer overflow in RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1, allows remote attackers to execute arbitrary code via .WAV files.

family

unix

oval:org.mitre.oval:def:11419

status

accepted

submitted

2010-07-09T03:56:16-04:00

title

Heap-based buffer overflow in RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1, allows remote attackers to execute arbitrary code via .WAV files.

version

Redhat

advisories

rhsa
id RHSA-2005:265
rhsa
id RHSA-2005:271

rpms

HelixPlayer-1:1.0.3-1
HelixPlayer-debuginfo-1:1.0.3-1

Summary

Vulnerable Configurations

Nessus

Oval

Redhat

References