Intrusion Prevention

RealNetworks.RealPlayer.FLV.Parsing.Integer.Overflow

Description

This indicates an attack attempt against an integer-overflow vulnerability in RealNetworks RealPlayer.
The vulnerability is caused by an error when the vulnerable software handles the ECMA Array and the Strict Array type data in FLV files. It allows a remote attacker to execute arbitrary code.

Affected Products

RealNetworks RealPlayer SP 1.1.4
RealNetworks RealPlayer SP 1.0.5
RealNetworks RealPlayer SP 1.0.2
RealNetworks RealPlayer SP 1.0.1
RealNetworks RealPlayer SP 1.0
RealNetworks RealPlayer 11 Beta 6.0.14 .550
RealNetworks RealPlayer 11.0.5
RealNetworks RealPlayer 11.0.4
RealNetworks RealPlayer 11.0.3
RealNetworks RealPlayer 11.0.2
RealNetworks RealPlayer 11.0.1
RealNetworks RealPlayer 11.1
RealNetworks RealPlayer 11 Beta
RealNetworks RealPlayer 11

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the patch supplied by the vendor:
http://service.real.com/realplayer/security/08262010_player/en/

CVE References

CVE-2010-3000