lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Message-Id: <20080725200746.0C53B1A003C@mailserver8.hushmail.com>
Date: Fri, 25 Jul 2008 16:07:44 -0400
From: "Elazar Broad" <elazar@...hmail.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Real Networks RealPlayer ActiveX Heap Use After
	Free Vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Who:
Real Networks

What:
RealPlayer 11 (11.0.0 - 11.0.2  builds 6.0.14.738 - 6.0.14.802)
RealPlayer 10.5 (6.0.12.1040-6.0.12.1663, 6.0.12.1698, 6.0.12.1741)
RealPlayer 10
RealPlayer Enterprise

How:
The WindowName and Controls properties of rmoc3260.dll do not
manage heap memory properly resulting in a use after free condition
which can overwrite heap management structures resulting in code
execution. Note that this is the same issue that affected the
Console property(which was fixed in Real Player 11.0.2/rmoc3260.dll
version 6.0.10.50, however these were not).

Fix:
Real Networks has released fixes for this issue, please see
http://service.real.com/realplayer/security/07252008_player/en/

Elazar
-----BEGIN PGP SIGNATURE-----
Charset: UTF8
Version: Hush 3.0
Note: This signature can be verified at https://www.hushtools.com/verify

wpwEAQECAAYFAkiKMhgACgkQi04xwClgpZhFRAP9EEcawIxaC8gVfJhHKfNMj9/+xIfu
1Tqe5SayZCWSqO2vFdLdc6S9cRF72lcMbrnylnY4cmsVOyWUkCmU/cEup93BWt7LTbv1
c80pTPPxeTY2KTE+4ihrdFenVdlQuuwJfcG+krbtE1wV0NHeTzopEP1Cr0SqEajwquI7
obKXpek=
=/9UE
-----END PGP SIGNATURE-----

--
Click here for great computer networking solutions!
http://tagline.hushmail.com/fc/Ioyw6h4fM6mKzFsp60mMjxonRlOvNsnM1orMMvmhAPRxWsI1PtdJrC/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ