Detections
Analytics

Rhapsody SWF File Handling Buffer Overflow

high Nessus Plugin ID 21141

Synopsis

The remote Windows application is affected by a buffer overflow flaw.

Description

According to its version number, the installed version of Rhapsody on the remote host suffers from a buffer overflow involving SWF files. To exploit this issue, a remote attacker needs to convince a user to attempt to play a maliciously crafted SWF file using the affected application.

Solution

Upgrade to Rhapsody 3 build 1.0.270 or later.

See Also

http://service.real.com/realplayer/security/03162006_player/en/

Plugin Details

Severity: High

ID: 21141

File Name: rhapsody_3_1_0_270.nasl

Version: 1.15

Type: local

Agent: windows

Family: Windows

Published: 3/24/2006

Updated: 8/22/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 5.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: SMB/Rhapsody/Version

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 3/22/2006

Reference Information

CVE: CVE-2006-0323

BID: 17202

CWE: 119