PT-2003-1821 · Realnetworks · View Source Plug-In+3

Dave Aitel

Published

2003-09-03

Updated

2008-09-05

CVE-2003-0725

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: RealNetworks Helix Universal Server version 9 RealSystem Server versions 7 and 8 RealServer G2

Description: A buffer overflow issue exists in the RTSP protocol parser for the View Source plug-in, which could allow remote attackers to execute arbitrary code.

Recommendations: For RealNetworks Helix Universal Server version 9, update the View Source plug-in to a version that fixes the buffer overflow issue in the RTSP protocol parser. For RealSystem Server versions 7 and 8, update the View Source plug-in to a version that fixes the buffer overflow issue in the RTSP protocol parser. For RealServer G2, update the View Source plug-in to a version that fixes the buffer overflow issue in the RTSP protocol parser.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0725

Affected Products

Realnetworks Helix Universal Server

Realserver G2

Realsystem Server

View Source Plug-In

PT-2003-1821 · Realnetworks · View Source Plug-In+3

CVE-2003-0725

Related Identifiers

Affected Products

References · 7