CVE-2009-4245
published 2010-01-25CVE-2009-4245: Heap-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer…
PriorityP346critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
6.83%
93.2th percentile
Heap-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a compressed GIF file, related to gifcodec.cpp and gifimage.cpp.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-89x4-gm7p-7fr8: Heap-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10
ghsa_unreviewed·2022-05-02
CVE-2009-4245 [HIGH] CWE-119 GHSA-89x4-gm7p-7fr8: Heap-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10
Heap-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a compressed GIF file, related to gifcodec.cpp and gifimage.cpp.
Red Hat
RealPlayer: compressed GIF heap overflow
vendor_redhat·2008-07-23·CVSS 9.3
CVE-2009-4245 [CRITICAL] RealPlayer: compressed GIF heap overflow
RealPlayer: compressed GIF heap overflow
Heap-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a compressed GIF file, related to gifcodec.cpp and gifimage.cpp.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2009-4245 HelixPlayer / RealPlayer: compressed GIF heap overflow
bugzilla·2010-02-03·CVSS 9.3
CVE-2009-4245 [CRITICAL] CVE-2009-4245 HelixPlayer / RealPlayer: compressed GIF heap overflow
CVE-2009-4245 HelixPlayer / RealPlayer: compressed GIF heap overflow
Common Vulnerabilities and Exposures assigned an identifier CVE-2009-4245 to the following vulnerability:
Heap-based buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10.5
6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4,
RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and
Helix Player 10.x allows remote attackers to have an unspecified impact via a
compressed GIF file.
References:
http://service.real.com/realplayer/security/01192010_player/en/
http://xforce.iss.net/xforce/xfdb/55800
Discussion:
According to upstream, this is:
http://lists.helixcommunity.org/pipermail/datatype-cvs/2008-July/008455.html
https://helixcommunity.org/viewcvs/datatype/image/gif/common/gif
Bugzilla
HelixPlayer / RealPlayer: multiple security issues (01192010_player)
bugzilla·2010-01-29·CVSS 9.3
[CRITICAL] HelixPlayer / RealPlayer: multiple security issues (01192010_player)
HelixPlayer / RealPlayer: multiple security issues (01192010_player)
RealNetworks has published a security advisory mentioning 11 security issues affecting various RealPlayer / HelixPlayer versions:
http://service.real.com/realplayer/security/01192010_player/en/
Upstream advisory does not specify which issues should be applicable to HelixPlayer 1.0.x versions (Affected? By various).
Some of the issues are covered by 3rd party advisories (e.g. ZDI) listed below.
Vulnerability 1:
The identified vulnerability is a RealPlayer ASM Rulebook heap-based buffer overflow: CVE-2009-4241
http://www.zerodayinitiative.com/advisories/ZDI-10-005/
Vulnerability 2:
The identified vulnerability is a RealPlayer GIF file Heap Overflow: CVE-2009-4242
http://www.zerodayinitiative.com/advisories/ZDI-10-006/
http://lists.helixcommunity.org/pipermail/datatype-cvs/2008-July/008455.htmlhttp://osvdb.org/61969http://secunia.com/advisories/38218http://secunia.com/advisories/38450http://securitytracker.com/id?1023489http://service.real.com/realplayer/security/01192010_player/en/http://www.redhat.com/support/errata/RHSA-2010-0094.htmlhttp://www.securityfocus.com/bid/37880http://www.vupen.com/english/advisories/2010/0178https://bugzilla.redhat.com/show_bug.cgi?id=561441https://exchange.xforce.ibmcloud.com/vulnerabilities/55800https://helixcommunity.org/viewcvs/datatype/image/gif/common/gifcodec.cpp?view=log#rev1.7https://helixcommunity.org/viewcvs/datatype/image/gif/common/gifimage.cpp?view=log#rev1.6https://helixcommunity.org/viewcvs/datatype/image/gif/common/pub/gifcodec.h?view=log#rev1.5https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9998http://lists.helixcommunity.org/pipermail/datatype-cvs/2008-July/008455.htmlhttp://osvdb.org/61969http://secunia.com/advisories/38218http://secunia.com/advisories/38450http://securitytracker.com/id?1023489http://service.real.com/realplayer/security/01192010_player/en/http://www.redhat.com/support/errata/RHSA-2010-0094.htmlhttp://www.securityfocus.com/bid/37880http://www.vupen.com/english/advisories/2010/0178https://bugzilla.redhat.com/show_bug.cgi?id=561441https://exchange.xforce.ibmcloud.com/vulnerabilities/55800https://helixcommunity.org/viewcvs/datatype/image/gif/common/gifcodec.cpp?view=log#rev1.7https://helixcommunity.org/viewcvs/datatype/image/gif/common/gifimage.cpp?view=log#rev1.6https://helixcommunity.org/viewcvs/datatype/image/gif/common/pub/gifcodec.h?view=log#rev1.5https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9998
2010-01-25
Published