[<prev] [next>] [day] [month] [year] [list]
Message-Id: <20080725200746.0C53B1A003C@mailserver8.hushmail.com>
Date: Fri, 25 Jul 2008 16:07:44 -0400
From: "Elazar Broad" <elazar@...hmail.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Real Networks RealPlayer ActiveX Heap Use After
Free Vulnerability
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Who:
Real Networks
What:
RealPlayer 11 (11.0.0 - 11.0.2 builds 6.0.14.738 - 6.0.14.802)
RealPlayer 10.5 (6.0.12.1040-6.0.12.1663, 6.0.12.1698, 6.0.12.1741)
RealPlayer 10
RealPlayer Enterprise
How:
The WindowName and Controls properties of rmoc3260.dll do not
manage heap memory properly resulting in a use after free condition
which can overwrite heap management structures resulting in code
execution. Note that this is the same issue that affected the
Console property(which was fixed in Real Player 11.0.2/rmoc3260.dll
version 6.0.10.50, however these were not).
Fix:
Real Networks has released fixes for this issue, please see
http://service.real.com/realplayer/security/07252008_player/en/
Elazar
-----BEGIN PGP SIGNATURE-----
Charset: UTF8
Version: Hush 3.0
Note: This signature can be verified at https://www.hushtools.com/verify
wpwEAQECAAYFAkiKMhgACgkQi04xwClgpZhFRAP9EEcawIxaC8gVfJhHKfNMj9/+xIfu
1Tqe5SayZCWSqO2vFdLdc6S9cRF72lcMbrnylnY4cmsVOyWUkCmU/cEup93BWt7LTbv1
c80pTPPxeTY2KTE+4ihrdFenVdlQuuwJfcG+krbtE1wV0NHeTzopEP1Cr0SqEajwquI7
obKXpek=
=/9UE
-----END PGP SIGNATURE-----
--
Click here for great computer networking solutions!
http://tagline.hushmail.com/fc/Ioyw6h4fM6mKzFsp60mMjxonRlOvNsnM1orMMvmhAPRxWsI1PtdJrC/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists