RealPlayer Multiple Remote Overflows

High Nessus Plugin ID 14278


The remote Windows application is affected by several remote overflows.


According to its build number, the installed version of RealPlayer on the remote host is vulnerable to several overflows. In exploiting these flaws, an attacker would need to be able to coerce a local user into visiting a malicious URL or downloading a malicious media file which, on execution, would execute code with the privileges of the local user.


Install the updates as outlined in the vendor advisory.

See Also

Plugin Details

Severity: High

ID: 14278

File Name: realplayer_6011.nasl

Version: $Revision: 1.19 $

Type: local

Agent: windows

Family: Windows

Published: 2004/08/16

Modified: 2011/09/12

Dependencies: 20183

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 7.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:U/RC:C

Vulnerability Information

CPE: cpe:/a:realnetworks:realplayer

Required KB Items: SMB/RealPlayer/Product, SMB/RealPlayer/Build

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2004/06/10

Vulnerability Publication Date: 2004/06/10

Reference Information

CVE: CVE-2004-0550

BID: 10527, 10528, 10934

OSVDB: 6851, 61196