RealPlayer ActiveX (ierpplug.dll) Playlist Handling Buffer Overflow

This script is Copyright (C) 2007-2017 Tenable Network Security, Inc.


Synopsis :

The remote Windows host contains an application that is affected by a
buffer overflow vulnerability.

Description :

The version of RealPlayer installed on the remote Windows host
contains signedness error in its 'MPAMedia.dll' library that can be
exploited via an ActiveX control when handling playlist names to cause
a stack-based buffer overflow. A remote attacker may be able to
exploit this issue to execute arbitrary code subject to the user's
privileges on the affected host.

See also :

http://service.real.com/realplayer/security/191007_player/en/

Solution :

Upgrade to RealPlayer 10.5 / 11 beta and apply the patch referenced in
the vendor advisory above.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.7
(CVSS2#E:F/RL:OF/RC:ND)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 27522 ()

Bugtraq ID: 26130

CVE ID: CVE-2007-5601

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now