• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

RealNetworks RealOne Player/RealPlayer Remote R3T File Stack Buffer Overflow Vulnerability

Bugtraq ID:	10070
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	Apr 07 2004 12:00AM
Updated:	Apr 07 2004 12:00AM
Credit:	This issue was discovered by the people at NGSSoftware.
Vulnerable:	Real Networks RealPlayer 10.0 BETA Real Networks RealPlayer 8.0 Win32 - Microsoft Windows 2000 Professional SP2 - Microsoft Windows 2000 Professional SP1 - Microsoft Windows 2000 Professional - Microsoft Windows 98 SP1 - Microsoft Windows 98 - Microsoft Windows 98SE - Microsoft Windows ME - Microsoft Windows NT 4.0 SP6a - Microsoft Windows NT 4.0 SP5 - Microsoft Windows NT 4.0 SP4 - Microsoft Windows XP Home - Microsoft Windows XP Professional Real Networks RealPlayer 8.0 Unix - Caldera OpenLinux Workstation 3.1 - Debian Linux 2.2 IA-32 - Debian Linux 2.2 alpha - HP HP-UX 11.11 - HP HP-UX 11.0 - IBM AIX 4.3.3 - IBM AIX 4.3.2 - IBM AIX 4.3.1 - IBM AIX 4.3 - IBM AIX 4.2.1 - IBM AIX 4.2 - MandrakeSoft Linux Mandrake 8.0 - MandrakeSoft Linux Mandrake 7.2 - RedHat Linux 7.2 i386 - RedHat Linux 7.1 i386 - RedHat Linux 7.0 i386 - RedHat Linux 6.2 sparc - RedHat Linux 6.2 i386 - RedHat Linux 6.2 alpha + S.u.S.E. Linux 8.1 - S.u.S.E. Linux 7.2 i386 - S.u.S.E. Linux 7.1 x86 - S.u.S.E. Linux 7.1 - S.u.S.E. Linux 7.0 i386 + S.u.S.E. Linux Desktop 1.0 + S.u.S.E. Linux Personal 9.1 + S.u.S.E. Linux Personal 9.0 x86_64 + S.u.S.E. Linux Personal 9.0 + S.u.S.E. Linux Personal 8.2 - SCO eDesktop 2.4 - SGI IRIX 6.5.14 - SGI IRIX 6.5.13 m - SGI IRIX 6.5.13 f - SGI IRIX 6.5.13 - SGI IRIX 6.5.12 m - SGI IRIX 6.5.12 f - SGI IRIX 6.5.12 - SGI IRIX 6.5.11 m - SGI IRIX 6.5.11 f - SGI IRIX 6.5.11 - SGI IRIX 6.3 - Slackware Linux 8.0 - Slackware Linux 7.1 - Slackware Linux 7.0 - Sun Solaris 7.0 - Sun Solaris 2.6 Real Networks RealPlayer 8.0 Mac Real Networks RealOne Player version 2.0 for Windows Real Networks RealOne Player 6.0.11 .872 Real Networks RealOne Player 6.0.11 .868 Real Networks RealOne Player 6.0.11 .853 Real Networks RealOne Player 6.0.11 .841 Real Networks RealOne Player 6.0.11 .830 Real Networks RealOne Player 6.0.11 .818 Real Networks RealOne Player 2.0 Real Networks RealOne Enterprise Desktop 6.0.11 .774
Not Vulnerable: