Trend Micro Security

RealNetworks RealPlayer Stack Based Buffer Overflow Vulnerability

  危険度: :
  CVE識別番号: CVE-2013-7260

  概要

Multiple stack-based buffer overflows in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allow remote attackers to execute arbitrary code via a long (1) version number or (2) encoding declaration in the XML declaration of an RMP file.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1005849
  Trend Micro Deep Security DPI Rule Name: 1005849 - RealNetworks RealPlayer Stack Based Buffer Overflow Vulnerability

  影響を受けるソフトウェア

  • realnetworks realplayer 10.0
  • realnetworks realplayer 10.1
  • realnetworks realplayer 10.5
  • realnetworks realplayer 11.0
  • realnetworks realplayer 11.0.1
  • realnetworks realplayer 11.0.2
  • realnetworks realplayer 11.0.2.1744
  • realnetworks realplayer 11.0.2.2315
  • realnetworks realplayer 11.0.3
  • realnetworks realplayer 11.0.4
  • realnetworks realplayer 11.0.5
  • realnetworks realplayer 11.1
  • realnetworks realplayer 11.1.3
  • realnetworks realplayer 11_build_6.0.14.748
  • realnetworks realplayer 12.0.0.1444
  • realnetworks realplayer 12.0.0.1548
  • realnetworks realplayer 12.0.0.1701
  • realnetworks realplayer 12.0.1.1737
  • realnetworks realplayer 14.0.0
  • realnetworks realplayer 14.0.1
  • realnetworks realplayer 14.0.1.609
  • realnetworks realplayer 14.0.2
  • realnetworks realplayer 14.0.3
  • realnetworks realplayer 14.0.4
  • realnetworks realplayer 14.0.5
  • realnetworks realplayer 15.0.0
  • realnetworks realplayer 15.0.4
  • realnetworks realplayer 15.0.4.43
  • realnetworks realplayer 15.0.5.109
  • realnetworks realplayer 15.0.6.14
  • realnetworks realplayer 15.02.71
  • realnetworks realplayer 16.0.0
  • realnetworks realplayer 16.0.0.282
  • realnetworks realplayer 16.0.1.18
  • realnetworks realplayer 16.0.2.32
  • realnetworks realplayer 16.0.3.51
  • realnetworks realplayer 17.0.4.60
  • realnetworks realplayer 2.1.2
  • realnetworks realplayer 2.1.3
  • realnetworks realplayer 2.1.4
  • realnetworks realplayer 4
  • realnetworks realplayer 5
  • realnetworks realplayer 6
  • realnetworks realplayer 7
  • realnetworks realplayer 8