SUSE-SA:2005:059: RealPlayer

High Nessus Plugin ID 19996


The remote host is missing a vendor-supplied security patch


The remote host is missing the patch for the advisory SUSE-SA:2005:059 (RealPlayer).

The following security issue in RealPlayer was fixed:

- A format string bug in the RealPix (.rp) file format parser (CVE-2005-2710).

This bug allowed remote attackers to execute arbitrary code by supplying a specially crafted file, e.g via Web page or E-Mail.

Note that we no longer support RealPlayer on the following distributions for some time now:
- SUSE Linux 9.1
- SUSE Linux 9.0
- SUSE Linux Desktop 1.0

On these distributions, please deinstall RealPlayer by running as root:
rpm -e RealPlayer


Plugin Details

Severity: High

ID: 19996

File Name: suse_SA_2005_059.nasl

Version: $Revision: 1.5 $

Agent: unix

Published: 2005/10/11

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list