CVE-2005-2922
published 2005-12-31CVE-2005-2922: Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player…
PriorityP337critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
5.78%
92.2th percentile
Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player allows remote malicious servers to cause a denial of service (crash) and possibly execute arbitrary code via a chunked Transfer-Encoding HTTP response in which either (1) the chunk header length is specified as -1, (2) the chunk header with a length that is less than the actual amount of sent data, or (3) a missing chunk header.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | realone_player | — | — |
| realnetworks | realone_player | — | — |
| realnetworks | realone_player | — | — |
| realnetworks | realone_player | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2006-03-22·CVSS 9.3
CVE-2005-2922 [CRITICAL] security flaw
security flaw
Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player allows remote malicious servers to cause a denial of service (crash) and possibly execute arbitrary code via a chunked Transfer-Encoding HTTP response in which either (1) the chunk header length is specified as -1, (2) the chunk header with a length that is less than the actual amount of sent data, or (3) a missing chunk header.
GHSA
GHSA-w8fj-r9j2-qg46: Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10
ghsa_unreviewed·2022-05-01
CVE-2005-2922 [HIGH] CWE-119 GHSA-w8fj-r9j2-qg46: Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10
Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player allows remote malicious servers to cause a denial of service (crash) and possibly execute arbitrary code via a chunked Transfer-Encoding HTTP response in which either (1) the chunk header length is specified as -1, (2) the chunk header with a length that is less than the actual amount of sent data, or (3) a missing chunk header.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2005-2922 security flaw
bugzilla·2018-08-16·CVSS 9.3
CVE-2005-2922 [CRITICAL] CVE-2005-2922 security flaw
CVE-2005-2922 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player allows remote malicious servers to cause a denial of service (crash) and possibly execute arbitrary code via a chunked Transfer-Encoding HTTP response in which either (1) the chunk header length is specified as -1, (2) the chunk header with a length that is less than the actual amount of sent data, or (3) a missing chunk header.
Bugzilla
CVE-2005-2922 chunked encoding real flaw
bugzilla·2005-09-19·CVSS 9.3
CVE-2005-2922 [CRITICAL] CVE-2005-2922 chunked encoding real flaw
CVE-2005-2922 chunked encoding real flaw
Real reported this flaw on 20050916:
Remote exploitation of a heap-based buffer overflow could allow the execution of
arbitrary code in the context of the currently logged in user.
The vulnerability specifically exists in the handling of the 'chunked'
Transfer-Encoding method.
Successful exploitation allows a remote attacker to execute arbitrary code with
the privileges of the currently logged in user. In order to exploit this
vulnerability, an attacker would need to entice a user to follow a link to a
malicious server. Once the user visits a website under the control of an
attacker, it is possible in a default install of RealPlayer to force a
web-browser to use RealPlayer to connect to an arbitrary server, even when it is
not the default applic
http://secunia.com/advisories/19358http://secunia.com/advisories/19365http://securitytracker.com/id?1015808http://www.kb.cert.org/vuls/id/172489http://www.novell.com/linux/security/advisories/2006_18_realplayer.htmlhttp://www.redhat.com/support/errata/RHSA-2005-762.htmlhttp://www.redhat.com/support/errata/RHSA-2005-788.htmlhttp://www.securityfocus.com/bid/17202http://www.service.real.com/realplayer/security/03162006_player/en/http://www.vupen.com/english/advisories/2006/1057https://exchange.xforce.ibmcloud.com/vulnerabilities/25409https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11444http://secunia.com/advisories/19358http://secunia.com/advisories/19365http://securitytracker.com/id?1015808http://www.kb.cert.org/vuls/id/172489http://www.novell.com/linux/security/advisories/2006_18_realplayer.htmlhttp://www.redhat.com/support/errata/RHSA-2005-762.htmlhttp://www.redhat.com/support/errata/RHSA-2005-788.htmlhttp://www.securityfocus.com/bid/17202http://www.service.real.com/realplayer/security/03162006_player/en/http://www.vupen.com/english/advisories/2006/1057https://exchange.xforce.ibmcloud.com/vulnerabilities/25409https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11444
2005-12-31
Published