FreeBSD : realplayer -- arbitrary file deletion and other vulnerabilities (02274fd9-6bc5-11d9-8edb-000a95bc6fae)

This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

An NGSSoftware Insight Security Research Advisory reports :

Two vulnerabilities have been discovered in RealPlayer which may
potentially be leveraged to allow remote code execution, or may used
in combination with the Real Metadata Package File Deletion
vulnerability to reliably delete files from a users system.

See also :

http://www.ngssoftware.com/advisories/real-02full.txt
http://www.ngssoftware.com/advisories/real-03full.txt
http://service.real.com/help/faq/security/040928_player/EN/
http://www.nessus.org/u?8c885b01

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 18818 (freebsd_pkg_02274fd96bc511d98edb000a95bc6fae.nasl)

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now