TUCoPS :: Web :: Apps :: rserver4.htm

RealNetworks RealServer 7 memory problem/Denial of Service 
Vulnerability

    RealServer

Affected

    - Real Networks Real Server 7 (linux or Windows)
    - Real Networks Real Server Pro (linux or Windows)
    - Real Networks Real Server Intranet (linux or Windows)
    - Real Networks Real Server Plus (linux or Windows)
    - Real Networks Real Server Basic (linux or Windows)
    - Real Networks Real Server G2 1.0

Description

    Ussr  Labs  found  following.   The  Ussr  Labs  team has recently
    discovered a  memory problem  in the  RealServer 7  Server.   What
    happens  is,  by  preforming  an  attack  with specially-malformed
    information to port 7070 it  will cause the proccess containg  the
    services to stop responding.

    Binary or Source for this D.o.S:

        http://www.ussrback.com/

    The exploit will take down  the RealServer causing it to  stop all
    streaming  media  brodcasts,  making  it  non-functional,  (untill
    reboot).

Solution

    There's  an  update  to  the  RealServer Software that will defeat
    this specific  attack.   Please go  to the  below URL for download
    instructions:

        http://service.real.com/help/faq/servg270.html

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH