Synopsis
The remote host is missing a vendor-supplied security patch
Description
The remote host is missing the patch for the advisory SUSE-SA:2005:059 (RealPlayer).
The following security issue in RealPlayer was fixed:
- A format string bug in the RealPix (.rp) file format parser (CVE-2005-2710).
This bug allowed remote attackers to execute arbitrary code by supplying a specially crafted file, e.g via Web page or E-Mail.
Note that we no longer support RealPlayer on the following distributions for some time now:
- SUSE Linux 9.1
- SUSE Linux 9.0
- SUSE Linux Desktop 1.0
On these distributions, please deinstall RealPlayer by running as root:
rpm -e RealPlayer
Solution
http://www.suse.de/security/advisories/2005_59_RealPlayer.html
Plugin Details
File Name: suse_SA_2005_059.nasl
Agent: unix
Supported Sensors: Nessus Agent, Nessus
Vulnerability Information
Required KB Items: Host/SuSE/rpm-list