cvelistv5 - CVE-2007-2264

CVE-2007-2264

Vulnerability from cvelistv5

Published

2007-10-31 17:00

Modified

2024-08-07 13:33

Severity ?

Summary

Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header.

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/27361	Patch, Vendor Advisory
cve@mitre.org	http://securitytracker.com/id?1018866	Patch
cve@mitre.org	http://service.real.com/realplayer/security/10252007_player/en/
cve@mitre.org	http://www.attrition.org/pipermail/vim/2007-October/001841.html
cve@mitre.org	http://www.securityfocus.com/archive/1/483113/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/26214	Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2007/3628	Vendor Advisory
cve@mitre.org	http://www.zerodayinitiative.com/advisories/ZDI-07-063.html
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/37437
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/27361	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1018866	Patch
af854a3a-2127-422b-91ae-364da2661108	http://service.real.com/realplayer/security/10252007_player/en/
af854a3a-2127-422b-91ae-364da2661108	http://www.attrition.org/pipermail/vim/2007-October/001841.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/483113/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/26214	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/3628	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.zerodayinitiative.com/advisories/ZDI-07-063.html
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/37437
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T13:33:28.220Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://service.real.com/realplayer/security/10252007_player/en/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html"
          },
          {
            "name": "1018866",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1018866"
          },
          {
            "name": "realplayer-ram-bo(37437)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37437"
          },
          {
            "name": "20071031 ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/483113/100/0/threaded"
          },
          {
            "name": "20071030 RealPlayer Updates of October 25, 2007",
            "tags": [
              "mailing-list",
              "x_refsource_VIM",
              "x_transferred"
            ],
            "url": "http://www.attrition.org/pipermail/vim/2007-October/001841.html"
          },
          {
            "name": "ADV-2007-3628",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/3628"
          },
          {
            "name": "oval:org.mitre.oval:def:9100",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100"
          },
          {
            "name": "27361",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27361"
          },
          {
            "name": "26214",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/26214"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-10-25T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-16T14:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://service.real.com/realplayer/security/10252007_player/en/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html"
        },
        {
          "name": "1018866",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1018866"
        },
        {
          "name": "realplayer-ram-bo(37437)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37437"
        },
        {
          "name": "20071031 ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/483113/100/0/threaded"
        },
        {
          "name": "20071030 RealPlayer Updates of October 25, 2007",
          "tags": [
            "mailing-list",
            "x_refsource_VIM"
          ],
          "url": "http://www.attrition.org/pipermail/vim/2007-October/001841.html"
        },
        {
          "name": "ADV-2007-3628",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/3628"
        },
        {
          "name": "oval:org.mitre.oval:def:9100",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100"
        },
        {
          "name": "27361",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27361"
        },
        {
          "name": "26214",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/26214"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-2264",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://service.real.com/realplayer/security/10252007_player/en/",
              "refsource": "CONFIRM",
              "url": "http://service.real.com/realplayer/security/10252007_player/en/"
            },
            {
              "name": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html",
              "refsource": "MISC",
              "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html"
            },
            {
              "name": "1018866",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1018866"
            },
            {
              "name": "realplayer-ram-bo(37437)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37437"
            },
            {
              "name": "20071031 ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/483113/100/0/threaded"
            },
            {
              "name": "20071030 RealPlayer Updates of October 25, 2007",
              "refsource": "VIM",
              "url": "http://www.attrition.org/pipermail/vim/2007-October/001841.html"
            },
            {
              "name": "ADV-2007-3628",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/3628"
            },
            {
              "name": "oval:org.mitre.oval:def:9100",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100"
            },
            {
              "name": "27361",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/27361"
            },
            {
              "name": "26214",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/26214"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-2264",
    "datePublished": "2007-10-31T17:00:00",
    "dateReserved": "2007-04-25T00:00:00",
    "dateUpdated": "2024-08-07T13:33:28.220Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-2264\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-10-31T17:46:00.000\",\"lastModified\":\"2024-11-21T00:30:20.617\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header.\"},{\"lang\":\"es\",\"value\":\"Un desbordamiento de b\u00fafer en la regi\u00f3n Heap de la memoria en RealNetworks RealPlayer las versiones 8, 10, 10.1 y posiblemente 10.5; RealOne Player versiones 1 y 2; y RealPlayer Enterprise permite a los atacantes remotos ejecutar c\u00f3digo arbitrario por medio de un archivo RAM (.ra o .ram) con un valor de gran tama\u00f1o en el encabezado RA.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realone_player:*:*:mac:en:*:*:*:*\",\"matchCriteriaId\":\"E42CFE29-8AF0-4FAE-88FD-4E2D373FE16D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realone_player:1.0:*:windows:en:*:*:*:*\",\"matchCriteriaId\":\"880F633E-3833-4E07-91AE-F11E77DC3AF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realone_player:2.0:*:windows:*:*:*:*:*\",\"matchCriteriaId\":\"72F332E7-13EA-447D-8116-7CD404120040\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E6051B4-1B15-44C0-B2CD-5504E68C60F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.0:*:windows:*:*:*:*:*\",\"matchCriteriaId\":\"15FABF57-B77B-49FF-BEAF-1E0D6BD4B66F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.0:10.0.0.305:mac:*:*:*:*:*\",\"matchCriteriaId\":\"995983E3-6968-4071-A3E7-BC84800894C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.0:10.0.0.331:mac:*:*:*:*:*\",\"matchCriteriaId\":\"1D5A55EF-BFC7-4703-B115-910DC8338733\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.0:10.0.0.352:mac:*:*:*:*:*\",\"matchCriteriaId\":\"A4FE917E-31A3-4065-B723-FACECEB1BEB8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.0:10.0.5:linux:*:*:*:*:*\",\"matchCriteriaId\":\"28F3DFCA-C0E8-43FC-B313-7E21978AE481\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.0:10.0.6:linux:*:*:*:*:*\",\"matchCriteriaId\":\"2A874D31-8FDB-456C-ABF8-94F812DD1B67\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.0:10.0.7:linux:*:*:*:*:*\",\"matchCriteriaId\":\"CB81B184-CD30-42DD-8BA6-BED303BF6377\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.0:10.0.8:linux:*:*:*:*:*\",\"matchCriteriaId\":\"F62E12E0-D806-40F4-8779-18679572AD04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.0:10.0.9:linux:*:*:*:*:*\",\"matchCriteriaId\":\"5567F40F-B04C-4866-A7B2-C796AAA0CE86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.1:10.0.0._481:mac:*:*:*:*:*\",\"matchCriteriaId\":\"1311A415-4CBB-44BA-A014-FCC2BBFF6D28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.1:10.0.0.396:mac:*:*:*:*:*\",\"matchCriteriaId\":\"84E4F874-E9A5-40F1-82CF-5C2E4749DF6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.1:10.0.0.412:mac:*:*:*:*:*\",\"matchCriteriaId\":\"EBC0DDE6-356C-4EE7-83E1-7EF5A0C5A751\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1040:windows:*:*:*:*:*\",\"matchCriteriaId\":\"FB3CC6D6-334F-4F9C-8A5C-7EC3DCACEC50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1578:windows:*:*:*:*:*\",\"matchCriteriaId\":\"414712E9-6901-4D33-B970-36CC238D4257\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1698:windows:*:*:*:*:*\",\"matchCriteriaId\":\"35AAD3FF-B70E-46CB-A3C1-34B2412EE6EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1741:windows:*:*:*:*:*\",\"matchCriteriaId\":\"FA78969A-CBAE-4B67-96E7-F7EC9FD78E38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:realnetworks:realplayer_enterprise:*:*:windows:en:*:*:*:*\",\"matchCriteriaId\":\"B9BA3DF0-9785-4F70-A9A3-38F657B52AA7\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/27361\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1018866\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://service.real.com/realplayer/security/10252007_player/en/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.attrition.org/pipermail/vim/2007-October/001841.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/483113/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/26214\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/3628\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.zerodayinitiative.com/advisories/ZDI-07-063.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/37437\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/27361\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1018866\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://service.real.com/realplayer/security/10252007_player/en/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.attrition.org/pipermail/vim/2007-October/001841.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/483113/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/26214\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/3628\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.zerodayinitiative.com/advisories/ZDI-07-063.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/37437\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"This issue was fixed in RealPlayer for Red Hat Enterprise Linux 3 Extras, 4 Extras, 5 Supplementary by RHSA-2007:0841 on 17th August 2007:\\nhttp://rhn.redhat.com/errata/RHSA-2007-0841.html)on\\n\\n(Our original advisory did not mention this issue was fixed as the details of the issue were not made public by RealNetworks until 25th October 2007)\",\"lastModified\":\"2007-11-01T00:00:00\"}]}}"
  }
}

gsd-2007-2264

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

Aliases

CVE-2007-2264

Aliases

CVE-2007-2264

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-2264",
    "description": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header.",
    "id": "GSD-2007-2264",
    "references": [
      "https://www.suse.com/security/cve/CVE-2007-2264.html",
      "https://access.redhat.com/errata/RHSA-2007:0841"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-2264"
      ],
      "details": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header.",
      "id": "GSD-2007-2264",
      "modified": "2023-12-13T01:21:38.128616Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-2264",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://service.real.com/realplayer/security/10252007_player/en/",
            "refsource": "CONFIRM",
            "url": "http://service.real.com/realplayer/security/10252007_player/en/"
          },
          {
            "name": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html",
            "refsource": "MISC",
            "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html"
          },
          {
            "name": "1018866",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1018866"
          },
          {
            "name": "realplayer-ram-bo(37437)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37437"
          },
          {
            "name": "20071031 ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/483113/100/0/threaded"
          },
          {
            "name": "20071030 RealPlayer Updates of October 25, 2007",
            "refsource": "VIM",
            "url": "http://www.attrition.org/pipermail/vim/2007-October/001841.html"
          },
          {
            "name": "ADV-2007-3628",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/3628"
          },
          {
            "name": "oval:org.mitre.oval:def:9100",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100"
          },
          {
            "name": "27361",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/27361"
          },
          {
            "name": "26214",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/26214"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.0.305:mac:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.0.331:mac:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.1:10.0.0._481:mac:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.1:10.0.0.396:mac:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.0.352:mac:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.5:linux:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.1:10.0.0.412:mac:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1040:windows:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realone_player:2.0:*:windows:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.0:*:windows:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.8:linux:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.9:linux:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer_enterprise:*:*:windows:en:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realone_player:*:*:mac:en:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realone_player:1.0:*:windows:en:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.6:linux:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.7:linux:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1578:windows:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1698:windows:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1741:windows:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-2264"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20071030 RealPlayer Updates of October 25, 2007",
              "refsource": "VIM",
              "tags": [],
              "url": "http://www.attrition.org/pipermail/vim/2007-October/001841.html"
            },
            {
              "name": "26214",
              "refsource": "BID",
              "tags": [
                "Patch"
              ],
              "url": "http://www.securityfocus.com/bid/26214"
            },
            {
              "name": "1018866",
              "refsource": "SECTRACK",
              "tags": [
                "Patch"
              ],
              "url": "http://securitytracker.com/id?1018866"
            },
            {
              "name": "27361",
              "refsource": "SECUNIA",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/27361"
            },
            {
              "name": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html"
            },
            {
              "name": "http://service.real.com/realplayer/security/10252007_player/en/",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://service.real.com/realplayer/security/10252007_player/en/"
            },
            {
              "name": "ADV-2007-3628",
              "refsource": "VUPEN",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/3628"
            },
            {
              "name": "realplayer-ram-bo(37437)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37437"
            },
            {
              "name": "oval:org.mitre.oval:def:9100",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100"
            },
            {
              "name": "20071031 ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/483113/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2018-10-16T16:42Z",
      "publishedDate": "2007-10-31T17:46Z"
    }
  }
}

fkie_cve-2007-2264

Vulnerability from fkie_nvd

Published

2007-10-31 17:46

Modified

2024-11-21 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/27361	Patch, Vendor Advisory
cve@mitre.org	http://securitytracker.com/id?1018866	Patch
cve@mitre.org	http://service.real.com/realplayer/security/10252007_player/en/
cve@mitre.org	http://www.attrition.org/pipermail/vim/2007-October/001841.html
cve@mitre.org	http://www.securityfocus.com/archive/1/483113/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/26214	Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2007/3628	Vendor Advisory
cve@mitre.org	http://www.zerodayinitiative.com/advisories/ZDI-07-063.html
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/37437
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/27361	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1018866	Patch
af854a3a-2127-422b-91ae-364da2661108	http://service.real.com/realplayer/security/10252007_player/en/
af854a3a-2127-422b-91ae-364da2661108	http://www.attrition.org/pipermail/vim/2007-October/001841.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/483113/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/26214	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/3628	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.zerodayinitiative.com/advisories/ZDI-07-063.html
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/37437
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100

Impacted products

Vendor	Product	Version
realnetworks	realone_player	*
realnetworks	realone_player	1.0
realnetworks	realone_player	2.0
realnetworks	realplayer	8.0
realnetworks	realplayer	10.0
realnetworks	realplayer	10.0
realnetworks	realplayer	10.0
realnetworks	realplayer	10.0
realnetworks	realplayer	10.0
realnetworks	realplayer	10.0
realnetworks	realplayer	10.0
realnetworks	realplayer	10.0
realnetworks	realplayer	10.0
realnetworks	realplayer	10.1
realnetworks	realplayer	10.1
realnetworks	realplayer	10.1
realnetworks	realplayer	10.5
realnetworks	realplayer	10.5
realnetworks	realplayer	10.5
realnetworks	realplayer	10.5
realnetworks	realplayer_enterprise	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:realnetworks:realone_player:*:*:mac:en:*:*:*:*",
              "matchCriteriaId": "E42CFE29-8AF0-4FAE-88FD-4E2D373FE16D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realone_player:1.0:*:windows:en:*:*:*:*",
              "matchCriteriaId": "880F633E-3833-4E07-91AE-F11E77DC3AF4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realone_player:2.0:*:windows:*:*:*:*:*",
              "matchCriteriaId": "72F332E7-13EA-447D-8116-7CD404120040",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "4E6051B4-1B15-44C0-B2CD-5504E68C60F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.0:*:windows:*:*:*:*:*",
              "matchCriteriaId": "15FABF57-B77B-49FF-BEAF-1E0D6BD4B66F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.0.305:mac:*:*:*:*:*",
              "matchCriteriaId": "995983E3-6968-4071-A3E7-BC84800894C9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.0.331:mac:*:*:*:*:*",
              "matchCriteriaId": "1D5A55EF-BFC7-4703-B115-910DC8338733",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.0.352:mac:*:*:*:*:*",
              "matchCriteriaId": "A4FE917E-31A3-4065-B723-FACECEB1BEB8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.5:linux:*:*:*:*:*",
              "matchCriteriaId": "28F3DFCA-C0E8-43FC-B313-7E21978AE481",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.6:linux:*:*:*:*:*",
              "matchCriteriaId": "2A874D31-8FDB-456C-ABF8-94F812DD1B67",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.7:linux:*:*:*:*:*",
              "matchCriteriaId": "CB81B184-CD30-42DD-8BA6-BED303BF6377",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.8:linux:*:*:*:*:*",
              "matchCriteriaId": "F62E12E0-D806-40F4-8779-18679572AD04",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.0:10.0.9:linux:*:*:*:*:*",
              "matchCriteriaId": "5567F40F-B04C-4866-A7B2-C796AAA0CE86",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.1:10.0.0._481:mac:*:*:*:*:*",
              "matchCriteriaId": "1311A415-4CBB-44BA-A014-FCC2BBFF6D28",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.1:10.0.0.396:mac:*:*:*:*:*",
              "matchCriteriaId": "84E4F874-E9A5-40F1-82CF-5C2E4749DF6C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.1:10.0.0.412:mac:*:*:*:*:*",
              "matchCriteriaId": "EBC0DDE6-356C-4EE7-83E1-7EF5A0C5A751",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1040:windows:*:*:*:*:*",
              "matchCriteriaId": "FB3CC6D6-334F-4F9C-8A5C-7EC3DCACEC50",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1578:windows:*:*:*:*:*",
              "matchCriteriaId": "414712E9-6901-4D33-B970-36CC238D4257",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1698:windows:*:*:*:*:*",
              "matchCriteriaId": "35AAD3FF-B70E-46CB-A3C1-34B2412EE6EC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer:10.5:6.0.12.1741:windows:*:*:*:*:*",
              "matchCriteriaId": "FA78969A-CBAE-4B67-96E7-F7EC9FD78E38",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:realnetworks:realplayer_enterprise:*:*:windows:en:*:*:*:*",
              "matchCriteriaId": "B9BA3DF0-9785-4F70-A9A3-38F657B52AA7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header."
    },
    {
      "lang": "es",
      "value": "Un desbordamiento de b\u00fafer en la regi\u00f3n Heap de la memoria en RealNetworks RealPlayer las versiones 8, 10, 10.1 y posiblemente 10.5; RealOne Player versiones 1 y 2; y RealPlayer Enterprise permite a los atacantes remotos ejecutar c\u00f3digo arbitrario por medio de un archivo RAM (.ra o .ram) con un valor de gran tama\u00f1o en el encabezado RA."
    }
  ],
  "id": "CVE-2007-2264",
  "lastModified": "2024-11-21T00:30:20.617",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2007-10-31T17:46:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/27361"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://securitytracker.com/id?1018866"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://service.real.com/realplayer/security/10252007_player/en/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.attrition.org/pipermail/vim/2007-October/001841.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/483113/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/26214"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2007/3628"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37437"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/27361"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://securitytracker.com/id?1018866"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://service.real.com/realplayer/security/10252007_player/en/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.attrition.org/pipermail/vim/2007-October/001841.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/483113/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/26214"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2007/3628"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37437"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vendorComments": [
    {
      "comment": "This issue was fixed in RealPlayer for Red Hat Enterprise Linux 3 Extras, 4 Extras, 5 Supplementary by RHSA-2007:0841 on 17th August 2007:\nhttp://rhn.redhat.com/errata/RHSA-2007-0841.html)on\n\n(Our original advisory did not mention this issue was fixed as the details of the issue were not made public by RealNetworks until 25th October 2007)",
      "lastModified": "2007-11-01T00:00:00",
      "organization": "Red Hat"
    }
  ],
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

rhsa-2007_0841

Vulnerability from csaf_redhat

Published

2007-08-17 08:11

Modified

2024-11-14 10:05

Summary

Red Hat Security Advisory: RealPlayer security update

Notes

Topic

An updated RealPlayer package that fixes a security flaw is now available for Red Hat Enterprise Linux 3 Extras, 4 Extras, and 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team.

Details

RealPlayer is a media player that provides media playback locally and via streaming. A buffer overflow flaw was found in the way RealPlayer processed Synchronized Multimedia Integration Language (SMIL) files. It was possible for a malformed SMIL file to execute arbitrary code with the permissions of the user running RealPlayer. (CVE-2007-3410) All users of RealPlayer are advised to upgrade to this updated package containing RealPlayer version 10.0.9 which is not vulnerable to this issue.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated RealPlayer package that fixes a security flaw is now available\nfor Red Hat Enterprise Linux 3 Extras, 4 Extras, and 5 Supplementary.\n\nThis update has been rated as having critical security impact by the Red\nHat Security Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "RealPlayer is a media player that provides media playback locally and via\nstreaming.\n\nA buffer overflow flaw was found in the way RealPlayer processed\nSynchronized Multimedia Integration Language (SMIL) files. It was possible\nfor a malformed SMIL file to execute arbitrary code with the permissions of\nthe user running RealPlayer. (CVE-2007-3410)\n\nAll users of RealPlayer are advised to upgrade to this updated package\ncontaining RealPlayer version 10.0.9 which is not vulnerable to this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2007:0841",
        "url": "https://access.redhat.com/errata/RHSA-2007:0841"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "245836",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=245836"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0841.json"
      }
    ],
    "title": "Red Hat Security Advisory: RealPlayer security update",
    "tracking": {
      "current_release_date": "2024-11-14T10:05:32+00:00",
      "generator": {
        "date": "2024-11-14T10:05:32+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.0"
        }
      },
      "id": "RHSA-2007:0841",
      "initial_release_date": "2007-08-17T08:11:00+00:00",
      "revision_history": [
        {
          "date": "2007-08-17T08:11:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2007-08-17T04:11:11+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-14T10:05:32+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
                  "product_id": "5Client-Supplementary",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:5::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3 Extras",
                  "product_id": "3AS-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3 Extras",
                "product": {
                  "name": "Red Hat Desktop version 3 Extras",
                  "product_id": "3Desktop-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3 Extras",
                  "product_id": "3ES-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3 Extras",
                  "product_id": "3WS-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux Supplementary"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "RealPlayer-0:10.0.9-3.el5.i386",
                "product": {
                  "name": "RealPlayer-0:10.0.9-3.el5.i386",
                  "product_id": "RealPlayer-0:10.0.9-3.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/RealPlayer@10.0.9-3.el5?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
                "product": {
                  "name": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
                  "product_id": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/RealPlayer-debuginfo@10.0.9-3.el5?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "realplayer-0:10.0.9-0.rhel3.4.i386",
                "product": {
                  "name": "realplayer-0:10.0.9-0.rhel3.4.i386",
                  "product_id": "realplayer-0:10.0.9-0.rhel3.4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/realplayer@10.0.9-0.rhel3.4?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Enterprise Linux AS version 3 Extras",
          "product_id": "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3AS-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Desktop version 3 Extras",
          "product_id": "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3Desktop-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Enterprise Linux ES version 3 Extras",
          "product_id": "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3ES-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Enterprise Linux WS version 3 Extras",
          "product_id": "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3WS-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "RealPlayer-0:10.0.9-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
          "product_id": "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386"
        },
        "product_reference": "RealPlayer-0:10.0.9-3.el5.i386",
        "relates_to_product_reference": "5Client-Supplementary"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
          "product_id": "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        },
        "product_reference": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
        "relates_to_product_reference": "5Client-Supplementary"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2007-2263",
      "discovery_date": "2007-10-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "353671"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Heap-based buffer overflow in RealNetworks RealPlayer 10.0, 10.1, and possibly 10.5, RealOne Player, and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an SWF (Flash) file with malformed record headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "realplayer swf file (flash media) heap overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-2263"
        },
        {
          "category": "external",
          "summary": "RHBZ#353671",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=353671"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2263",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-2263"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2263",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2263"
        }
      ],
      "release_date": "2007-10-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "realplayer swf file (flash media) heap overflow"
    },
    {
      "cve": "CVE-2007-2264",
      "discovery_date": "2007-10-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "353691"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "realplayer ram file heap overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-2264"
        },
        {
          "category": "external",
          "summary": "RHBZ#353691",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=353691"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2264",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-2264"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2264",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2264"
        }
      ],
      "release_date": "2007-10-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "realplayer ram file heap overflow"
    },
    {
      "cve": "CVE-2007-3410",
      "discovery_date": "2007-06-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "245836"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Stack-based buffer overflow in the SmilTimeValue::parseWallClockValue function in smlprstime.cpp in RealNetworks RealPlayer 10, 10.1, and possibly 10.5, RealOne Player, RealPlayer Enterprise, and Helix Player 10.5-GOLD and 10.0.5 through 10.0.8, allows remote attackers to execute arbitrary code via an SMIL (SMIL2) file with a long wallclock value.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "RealPlayer/HelixPlayer buffer overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-3410"
        },
        {
          "category": "external",
          "summary": "RHBZ#245836",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=245836"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-3410",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-3410"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-3410",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3410"
        }
      ],
      "release_date": "2007-06-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "RealPlayer/HelixPlayer buffer overflow"
    },
    {
      "cve": "CVE-2007-5081",
      "discovery_date": "2007-10-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "353661"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted RM file.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "realplayer rm file heap overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-5081"
        },
        {
          "category": "external",
          "summary": "RHBZ#353661",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=353661"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-5081",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-5081"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5081",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5081"
        }
      ],
      "release_date": "2007-10-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "realplayer rm file heap overflow"
    }
  ]
}

rhsa-2007:0841

Vulnerability from csaf_redhat

Published

2007-08-17 08:11

Modified

2024-11-14 10:05

Summary

Red Hat Security Advisory: RealPlayer security update

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated RealPlayer package that fixes a security flaw is now available\nfor Red Hat Enterprise Linux 3 Extras, 4 Extras, and 5 Supplementary.\n\nThis update has been rated as having critical security impact by the Red\nHat Security Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "RealPlayer is a media player that provides media playback locally and via\nstreaming.\n\nA buffer overflow flaw was found in the way RealPlayer processed\nSynchronized Multimedia Integration Language (SMIL) files. It was possible\nfor a malformed SMIL file to execute arbitrary code with the permissions of\nthe user running RealPlayer. (CVE-2007-3410)\n\nAll users of RealPlayer are advised to upgrade to this updated package\ncontaining RealPlayer version 10.0.9 which is not vulnerable to this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2007:0841",
        "url": "https://access.redhat.com/errata/RHSA-2007:0841"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "245836",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=245836"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0841.json"
      }
    ],
    "title": "Red Hat Security Advisory: RealPlayer security update",
    "tracking": {
      "current_release_date": "2024-11-14T10:05:32+00:00",
      "generator": {
        "date": "2024-11-14T10:05:32+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.0"
        }
      },
      "id": "RHSA-2007:0841",
      "initial_release_date": "2007-08-17T08:11:00+00:00",
      "revision_history": [
        {
          "date": "2007-08-17T08:11:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2007-08-17T04:11:11+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-14T10:05:32+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
                  "product_id": "5Client-Supplementary",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:5::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3 Extras",
                  "product_id": "3AS-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3 Extras",
                "product": {
                  "name": "Red Hat Desktop version 3 Extras",
                  "product_id": "3Desktop-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3 Extras",
                  "product_id": "3ES-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3 Extras",
                  "product_id": "3WS-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux Supplementary"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "RealPlayer-0:10.0.9-3.el5.i386",
                "product": {
                  "name": "RealPlayer-0:10.0.9-3.el5.i386",
                  "product_id": "RealPlayer-0:10.0.9-3.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/RealPlayer@10.0.9-3.el5?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
                "product": {
                  "name": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
                  "product_id": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/RealPlayer-debuginfo@10.0.9-3.el5?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "realplayer-0:10.0.9-0.rhel3.4.i386",
                "product": {
                  "name": "realplayer-0:10.0.9-0.rhel3.4.i386",
                  "product_id": "realplayer-0:10.0.9-0.rhel3.4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/realplayer@10.0.9-0.rhel3.4?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Enterprise Linux AS version 3 Extras",
          "product_id": "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3AS-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Desktop version 3 Extras",
          "product_id": "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3Desktop-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Enterprise Linux ES version 3 Extras",
          "product_id": "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3ES-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Enterprise Linux WS version 3 Extras",
          "product_id": "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3WS-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "RealPlayer-0:10.0.9-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
          "product_id": "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386"
        },
        "product_reference": "RealPlayer-0:10.0.9-3.el5.i386",
        "relates_to_product_reference": "5Client-Supplementary"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
          "product_id": "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        },
        "product_reference": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
        "relates_to_product_reference": "5Client-Supplementary"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2007-2263",
      "discovery_date": "2007-10-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "353671"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Heap-based buffer overflow in RealNetworks RealPlayer 10.0, 10.1, and possibly 10.5, RealOne Player, and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an SWF (Flash) file with malformed record headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "realplayer swf file (flash media) heap overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-2263"
        },
        {
          "category": "external",
          "summary": "RHBZ#353671",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=353671"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2263",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-2263"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2263",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2263"
        }
      ],
      "release_date": "2007-10-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "realplayer swf file (flash media) heap overflow"
    },
    {
      "cve": "CVE-2007-2264",
      "discovery_date": "2007-10-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "353691"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "realplayer ram file heap overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-2264"
        },
        {
          "category": "external",
          "summary": "RHBZ#353691",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=353691"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2264",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-2264"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2264",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2264"
        }
      ],
      "release_date": "2007-10-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "realplayer ram file heap overflow"
    },
    {
      "cve": "CVE-2007-3410",
      "discovery_date": "2007-06-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "245836"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Stack-based buffer overflow in the SmilTimeValue::parseWallClockValue function in smlprstime.cpp in RealNetworks RealPlayer 10, 10.1, and possibly 10.5, RealOne Player, RealPlayer Enterprise, and Helix Player 10.5-GOLD and 10.0.5 through 10.0.8, allows remote attackers to execute arbitrary code via an SMIL (SMIL2) file with a long wallclock value.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "RealPlayer/HelixPlayer buffer overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-3410"
        },
        {
          "category": "external",
          "summary": "RHBZ#245836",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=245836"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-3410",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-3410"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-3410",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3410"
        }
      ],
      "release_date": "2007-06-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "RealPlayer/HelixPlayer buffer overflow"
    },
    {
      "cve": "CVE-2007-5081",
      "discovery_date": "2007-10-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "353661"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted RM file.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "realplayer rm file heap overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-5081"
        },
        {
          "category": "external",
          "summary": "RHBZ#353661",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=353661"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-5081",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-5081"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5081",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5081"
        }
      ],
      "release_date": "2007-10-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "realplayer rm file heap overflow"
    }
  ]
}

RHSA-2007:0841

Vulnerability from csaf_redhat

Published

2007-08-17 08:11

Modified

2024-11-14 10:05

Summary

Red Hat Security Advisory: RealPlayer security update

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated RealPlayer package that fixes a security flaw is now available\nfor Red Hat Enterprise Linux 3 Extras, 4 Extras, and 5 Supplementary.\n\nThis update has been rated as having critical security impact by the Red\nHat Security Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "RealPlayer is a media player that provides media playback locally and via\nstreaming.\n\nA buffer overflow flaw was found in the way RealPlayer processed\nSynchronized Multimedia Integration Language (SMIL) files. It was possible\nfor a malformed SMIL file to execute arbitrary code with the permissions of\nthe user running RealPlayer. (CVE-2007-3410)\n\nAll users of RealPlayer are advised to upgrade to this updated package\ncontaining RealPlayer version 10.0.9 which is not vulnerable to this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2007:0841",
        "url": "https://access.redhat.com/errata/RHSA-2007:0841"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "245836",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=245836"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0841.json"
      }
    ],
    "title": "Red Hat Security Advisory: RealPlayer security update",
    "tracking": {
      "current_release_date": "2024-11-14T10:05:32+00:00",
      "generator": {
        "date": "2024-11-14T10:05:32+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.0"
        }
      },
      "id": "RHSA-2007:0841",
      "initial_release_date": "2007-08-17T08:11:00+00:00",
      "revision_history": [
        {
          "date": "2007-08-17T08:11:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2007-08-17T04:11:11+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-14T10:05:32+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
                  "product_id": "5Client-Supplementary",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:5::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3 Extras",
                  "product_id": "3AS-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3 Extras",
                "product": {
                  "name": "Red Hat Desktop version 3 Extras",
                  "product_id": "3Desktop-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3 Extras",
                  "product_id": "3ES-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3 Extras",
                  "product_id": "3WS-LACD",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux Supplementary"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "RealPlayer-0:10.0.9-3.el5.i386",
                "product": {
                  "name": "RealPlayer-0:10.0.9-3.el5.i386",
                  "product_id": "RealPlayer-0:10.0.9-3.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/RealPlayer@10.0.9-3.el5?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
                "product": {
                  "name": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
                  "product_id": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/RealPlayer-debuginfo@10.0.9-3.el5?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "realplayer-0:10.0.9-0.rhel3.4.i386",
                "product": {
                  "name": "realplayer-0:10.0.9-0.rhel3.4.i386",
                  "product_id": "realplayer-0:10.0.9-0.rhel3.4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/realplayer@10.0.9-0.rhel3.4?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Enterprise Linux AS version 3 Extras",
          "product_id": "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3AS-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Desktop version 3 Extras",
          "product_id": "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3Desktop-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Enterprise Linux ES version 3 Extras",
          "product_id": "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3ES-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "realplayer-0:10.0.9-0.rhel3.4.i386 as a component of Red Hat Enterprise Linux WS version 3 Extras",
          "product_id": "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386"
        },
        "product_reference": "realplayer-0:10.0.9-0.rhel3.4.i386",
        "relates_to_product_reference": "3WS-LACD"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "RealPlayer-0:10.0.9-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
          "product_id": "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386"
        },
        "product_reference": "RealPlayer-0:10.0.9-3.el5.i386",
        "relates_to_product_reference": "5Client-Supplementary"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 5)",
          "product_id": "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        },
        "product_reference": "RealPlayer-debuginfo-0:10.0.9-3.el5.i386",
        "relates_to_product_reference": "5Client-Supplementary"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2007-2263",
      "discovery_date": "2007-10-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "353671"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Heap-based buffer overflow in RealNetworks RealPlayer 10.0, 10.1, and possibly 10.5, RealOne Player, and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an SWF (Flash) file with malformed record headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "realplayer swf file (flash media) heap overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-2263"
        },
        {
          "category": "external",
          "summary": "RHBZ#353671",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=353671"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2263",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-2263"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2263",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2263"
        }
      ],
      "release_date": "2007-10-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "realplayer swf file (flash media) heap overflow"
    },
    {
      "cve": "CVE-2007-2264",
      "discovery_date": "2007-10-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "353691"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "realplayer ram file heap overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-2264"
        },
        {
          "category": "external",
          "summary": "RHBZ#353691",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=353691"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-2264",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-2264"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-2264",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2264"
        }
      ],
      "release_date": "2007-10-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "realplayer ram file heap overflow"
    },
    {
      "cve": "CVE-2007-3410",
      "discovery_date": "2007-06-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "245836"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Stack-based buffer overflow in the SmilTimeValue::parseWallClockValue function in smlprstime.cpp in RealNetworks RealPlayer 10, 10.1, and possibly 10.5, RealOne Player, RealPlayer Enterprise, and Helix Player 10.5-GOLD and 10.0.5 through 10.0.8, allows remote attackers to execute arbitrary code via an SMIL (SMIL2) file with a long wallclock value.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "RealPlayer/HelixPlayer buffer overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-3410"
        },
        {
          "category": "external",
          "summary": "RHBZ#245836",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=245836"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-3410",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-3410"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-3410",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3410"
        }
      ],
      "release_date": "2007-06-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "RealPlayer/HelixPlayer buffer overflow"
    },
    {
      "cve": "CVE-2007-5081",
      "discovery_date": "2007-10-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "353661"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted RM file.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "realplayer rm file heap overflow",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
          "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
          "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-5081"
        },
        {
          "category": "external",
          "summary": "RHBZ#353661",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=353661"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-5081",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-5081"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5081",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5081"
        }
      ],
      "release_date": "2007-10-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-08-17T08:11:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3Desktop-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3ES-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "3WS-LACD:realplayer-0:10.0.9-0.rhel3.4.i386",
            "5Client-Supplementary:RealPlayer-0:10.0.9-3.el5.i386",
            "5Client-Supplementary:RealPlayer-debuginfo-0:10.0.9-3.el5.i386"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0841"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "realplayer rm file heap overflow"
    }
  ]
}

ghsa-vp7h-3q7r-gx68

Vulnerability from github

Published

2022-05-01 18:01

Modified

2022-05-01 18:01

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-2264"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-10-31T17:46:00Z",
    "severity": "HIGH"
  },
  "details": "Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM (.ra or .ram) file with a large size value in the RA header.",
  "id": "GHSA-vp7h-3q7r-gx68",
  "modified": "2022-05-01T18:01:52Z",
  "published": "2022-05-01T18:01:52Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2264"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37437"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9100"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/27361"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1018866"
    },
    {
      "type": "WEB",
      "url": "http://service.real.com/realplayer/security/10252007_player/en"
    },
    {
      "type": "WEB",
      "url": "http://www.attrition.org/pipermail/vim/2007-October/001841.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/483113/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/26214"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/3628"
    },
    {
      "type": "WEB",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-063.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2007-2264

Vulnerability from cvelistv5

gsd-2007-2264

Vulnerability from gsd

fkie_cve-2007-2264

Vulnerability from fkie_nvd

rhsa-2007_0841

Vulnerability from csaf_redhat

rhsa-2007:0841

Vulnerability from csaf_redhat

RHSA-2007:0841

Vulnerability from csaf_redhat

ghsa-vp7h-3q7r-gx68

Vulnerability from github

Tags

Sightings

Nomenclature