code is just a tactic

Register | Login

Home Files News About Contact Add New

Showing 1 - 1 of 1

Files

iDEFENSE Security Advisory 2010-02-01.1: Posted Feb 2, 2010; Authored by iDefense Labs | Site idefense.com; iDefense Security Advisory 02.01.10 - Remote exploitation of an integer overflow vulnerability in RealNetworks Inc.'s RealPlayer 11 could allow an attacker to execute arbitrary code with the privileges of the affected service. The vulnerability specifically exists in the handling of the 'chunked' Transfer-Encoding method. This method breaks the file the server is sending into 'chunks'. For each chunk, the server first sends the length of the chunk in hexadecimal, followed by the chunk data. This is repeated until there are no more chunks. The server then sends a chunk length of zero (0) indicating the end of the transfer. When processing these chunks, an integer overflow occurs, which results in a heap overflow. This leads to the execution of arbitrary code. iDefense has confirmed the existence of this vulnerability in RealPlayer version 11 on Windows. A nightly build of RealPlayer 10.1.0.3830 for Linux was also confirmed to be vulnerable. Previous versions do not appear be affected.; tags | advisory, remote, overflow, arbitrary; systems | linux, windows; advisories | CVE-2009-4243; MD5 | 816144c2fb429f97ccd37657d81fc172; Download | Favorite | Comments (0)

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 51 files
Ubuntu 36 files
the_cyber_nuxbie 27 files
Debian 25 files
Tipping Point 24 files
Sony 20 files
HP 16 files
Gentoo 16 files
3spi0n 15 files
Mandriva 12 files

Recent News

Over 3 Years Later, "Deleted" Facebook Photos Are Still Online: Posted Feb 8, 2012; tags | headline, privacy, facebook, social; Link | Favorite | Comments (0)

Spamvertised 'Tax Information Needed Urgently' Emails Lead To Malware: Posted Feb 8, 2012; tags | headline, malware, spam, scam; Link | Favorite | Comments (0)

Facebook Left Red-Faced Over Safer Internet Day Survey: Posted Feb 8, 2012; tags | headline, facebook, social; Link | Favorite | Comments (0)

Safer Internet Day Focuses On Net Safety For Families: Posted Feb 7, 2012; tags | headline; Link | Favorite | Comments (0)

Adobe Adds Flash Sandboxing To Firefox: Posted Feb 7, 2012; tags | headline, adobe, mozilla, firefox; Link | Favorite | Comments (0)

Attackers Taking Aim At Retail And Food Chains: Posted Feb 7, 2012; tags | headline, cybercrime, flaw; Link | Favorite | Comments (0)

Hackers Spunk pcAnywhere Source After Negotiation Breakdown: Posted Feb 7, 2012; tags | headline, data loss, symantec, anonymous; Link | Favorite | Comments (0)

Anonymous Releases Law Firm's Emails About Haditha Killings: Posted Feb 7, 2012; tags | headline, data loss, iraq, anonymous; Link | Favorite | Comments (0)

Trendnet Security Cam Flaw Exposes Video Feeds On Net: Posted Feb 7, 2012; tags | headline, privacy, data loss, flaw; Link | Favorite | Comments (0)

MPs Urge ISPs To Censor Web Content: Posted Feb 6, 2012; tags | headline, government, cybercrime, pirate; Link | Favorite | Comments (0)

View More News →

packet storm

© 2012 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Advertising: Become an Advertiser
Hosting By: Rokabear; Global Mirror List