Rhapsody vidplin.dll AVI Processing Heap Overflow Vulnerability

high Nessus Plugin ID 18560

Synopsis

The remote Windows host contains a multimedia player that is prone to a buffer overflow attack.

Description

The remote installation of Rhapsody has a heap overflow in the 'vidplin.dll' file used to process AVI files. With a specially- crafted AVI file, an attacker can exploit this flaw to cause arbitrary code to be run within the context of the affected application when a user opens the file.

Solution

Upgrade according to the vendor advisory referenced above.

See Also

https://www.beyondtrust.com/resources/blog/research/

https://seclists.org/bugtraq/2005/Jun/201

http://service.real.com/help/faq/security/050623_player/EN/

Plugin Details

Severity: High

ID: 18560

File Name: rhapsody_realtext_parsing_overflow.nasl

Version: 1.18

Type: local

Agent: windows

Family: Windows

Published: 6/24/2005

Updated: 11/15/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.5

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

Required KB Items: SMB/Rhapsody/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 6/23/2005

Vulnerability Publication Date: 6/23/2005

Reference Information

CVE: CVE-2005-2052

BID: 13530