CVE-2009-4248
published 2010-01-25CVE-2009-4248: Buffer overflow in the RTSPProtocol::HandleSetParameterRequest function in client/core/rtspprotocol.cpp in RealNetworks RealPlayer 10, RealPlayer 10.5…
PriorityP347critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
6.83%
93.2th percentile
Buffer overflow in the RTSPProtocol::HandleSetParameterRequest function in client/core/rtspprotocol.cpp in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted RTSP SET_PARAMETER request.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | helix_player | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer | — | — |
| realnetworks | realplayer_sp | — | — |
| realnetworks | realplayer_sp | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
php: hostname check bypassing vulnerability in SSL client
vendor_redhat·2013-08-13·CVSS 5.9
CVE-2013-4248 [MEDIUM] php: hostname check bypassing vulnerability in SSL client
php: hostname check bypassing vulnerability in SSL client
The openssl_x509_parse function in openssl.c in the OpenSSL module in PHP before 5.4.18 and 5.5.x before 5.5.2 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Statement: This issue does not affect the version of php as shipped with Red Hat Enterprise Linux 5 or the version of php54 as shipped with Red Hat Software Collections 1.
Package: php (Red Hat Enterprise Linux 5) - Not affected
Package: php (Red Hat Enterprise Linux 7) - Not affected
Package: php54-php (Red Hat Software C
Red Hat
RealPlayer: RTSP SET_PARAMETER buffer overflow
vendor_redhat·2008-01-17·CVSS 9.3
CVE-2009-4248 [CRITICAL] RealPlayer: RTSP SET_PARAMETER buffer overflow
RealPlayer: RTSP SET_PARAMETER buffer overflow
Buffer overflow in the RTSPProtocol::HandleSetParameterRequest function in client/core/rtspprotocol.cpp in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted RTSP SET_PARAMETER request.
GHSA
GHSA-wxc4-9pgw-f83x: Buffer overflow in the RTSPProtocol::HandleSetParameterRequest function in client/core/rtspprotocol
ghsa_unreviewed·2022-05-02
CVE-2009-4248 [HIGH] CWE-119 GHSA-wxc4-9pgw-f83x: Buffer overflow in the RTSPProtocol::HandleSetParameterRequest function in client/core/rtspprotocol
Buffer overflow in the RTSPProtocol::HandleSetParameterRequest function in client/core/rtspprotocol.cpp in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player 10.x allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted RTSP SET_PARAMETER request.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2009-4248 HelixPlayer / RealPlayer: RTSP SET_PARAMETER buffer overflow
bugzilla·2010-02-03·CVSS 9.3
CVE-2009-4248 [CRITICAL] CVE-2009-4248 HelixPlayer / RealPlayer: RTSP SET_PARAMETER buffer overflow
CVE-2009-4248 HelixPlayer / RealPlayer: RTSP SET_PARAMETER buffer overflow
Common Vulnerabilities and Exposures assigned an identifier CVE-2009-4248 to the following vulnerability:
Buffer overflow in RealNetworks RealPlayer 10, RealPlayer 10.5 6.0.12.1040
through 6.0.12.1741, RealPlayer 11 11.0.0 through 11.0.4, RealPlayer
Enterprise, Mac RealPlayer 10 and 10.1, Linux RealPlayer 10, and Helix Player
10.x allows remote attackers to have an unspecified impact via a crafted RTSP
SET_PARAMETER request.
References:
http://service.real.com/realplayer/security/01192010_player/en/
http://xforce.iss.net/xforce/xfdb/55801
Discussion:
According to upstream, relevant upstream fixes are:
HEAD:
http://lists.helixcommunity.org/pipermail/client-cvs/2008-January/003759.html
https://helixcommunity.org
Bugzilla
HelixPlayer / RealPlayer: multiple security issues (01192010_player)
bugzilla·2010-01-29·CVSS 9.3
[CRITICAL] HelixPlayer / RealPlayer: multiple security issues (01192010_player)
HelixPlayer / RealPlayer: multiple security issues (01192010_player)
RealNetworks has published a security advisory mentioning 11 security issues affecting various RealPlayer / HelixPlayer versions:
http://service.real.com/realplayer/security/01192010_player/en/
Upstream advisory does not specify which issues should be applicable to HelixPlayer 1.0.x versions (Affected? By various).
Some of the issues are covered by 3rd party advisories (e.g. ZDI) listed below.
Vulnerability 1:
The identified vulnerability is a RealPlayer ASM Rulebook heap-based buffer overflow: CVE-2009-4241
http://www.zerodayinitiative.com/advisories/ZDI-10-005/
Vulnerability 2:
The identified vulnerability is a RealPlayer GIF file Heap Overflow: CVE-2009-4242
http://www.zerodayinitiative.com/advisories/ZDI-10-006/
http://lists.helixcommunity.org/pipermail/client-cvs/2008-January/003756.htmlhttp://lists.helixcommunity.org/pipermail/client-cvs/2008-January/003759.htmlhttp://lists.helixcommunity.org/pipermail/client-dev/2008-January/004591.htmlhttp://secunia.com/advisories/38218http://secunia.com/advisories/38450http://securitytracker.com/id?1023489http://service.real.com/realplayer/security/01192010_player/en/http://www.redhat.com/support/errata/RHSA-2010-0094.htmlhttp://www.securityfocus.com/bid/37880http://www.vupen.com/english/advisories/2010/0178https://bugzilla.redhat.com/show_bug.cgi?id=561361https://exchange.xforce.ibmcloud.com/vulnerabilities/55801https://helixcommunity.org/viewcvs/client/core/rtspprotocol.cpp?view=log#rev1.55.2.19https://helixcommunity.org/viewcvs/client/core/rtspprotocol.cpp?view=log#rev1.86https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10641http://lists.helixcommunity.org/pipermail/client-cvs/2008-January/003756.htmlhttp://lists.helixcommunity.org/pipermail/client-cvs/2008-January/003759.htmlhttp://lists.helixcommunity.org/pipermail/client-dev/2008-January/004591.htmlhttp://secunia.com/advisories/38218http://secunia.com/advisories/38450http://securitytracker.com/id?1023489http://service.real.com/realplayer/security/01192010_player/en/http://www.redhat.com/support/errata/RHSA-2010-0094.htmlhttp://www.securityfocus.com/bid/37880http://www.vupen.com/english/advisories/2010/0178https://bugzilla.redhat.com/show_bug.cgi?id=561361https://exchange.xforce.ibmcloud.com/vulnerabilities/55801https://helixcommunity.org/viewcvs/client/core/rtspprotocol.cpp?view=log#rev1.55.2.19https://helixcommunity.org/viewcvs/client/core/rtspprotocol.cpp?view=log#rev1.86https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10641
2010-01-25
Published