RealNetworks RealPlayer/RealOne Player/Helix Player Remote Memory
Corruption
by Piotr Bania <bania.piotr@gmail.com>
http://www.piotrbania.com
Original url (and formating):
RealNetworks RealPlayer/RealOne Player/Helix Player Remote Heap Corruption
by Piotr Bania <bania.piotr@gmail.com>
http://www.piotrbania.com
Original url (and formatting):
http://www.piotrbania.com/all/adv/realplayer-heap-corruption-adv.txt
Severity: Important/Critical - Potencial remote code execution.
consuming manual work. Following paper discusses methods and techniques
implemented in SpiderPig in order to perform semi-automatic data flow
analysis.
Paper is available here:
http://piotrbania.com/all/spiderpig/pbania-spiderpig2008.pdf
Simple video demo and some other things available on project website:
http://piotrbania.com/all/spiderpig/
* Nico Waisman (Immunity) @nicowaisman
* Philippe Langlois (P1 Security, TSTF, /tmp/lab) @philpraxis
* Jonathan Brossard (Toucan System, P1 Code Security, /tmp/lab)
@endrazine
* Matthieu Suiche (MoonSols) @msuiche
* Piotr Bania @piotrbania
* Laurent Gaffi (Stratsec) @laurentgaffie
* Julien Tinnes (Google)
* Brad Spengler (aka spender) (Grsecurity)
* Silvio Cesare (Deakin University) @silviocesare
* Carlos Sarraute (Core security)
* Alex Ionescu @aionescu
* Nico Waisman (Immunity) @nicowaisman
* Philippe Langlois (P1 Security, TSTF, /tmp/lab) @philpraxis
* Jonathan Brossard (Toucan System, /tmp/lab) @endrazine
* Matthieu Suiche (MoonSols) @msuiche
* Piotr Bania @piotrbania
* Laurent Gaffi @laurentgaffie
* Julien Tinnes (Google)
* Brad Spengler (aka spender) (Grsecurity)
* Silvio Cesare (Deakin University) @silviocesare
* Carlos Sarraute (Core security)
2007.03.19 - Vulnerability reported to vendor
2007.08.14 - Digital Vaccine released to TippingPoint customers
2007.08.14 - Coordinated public release of advisory
-- Credit:
This vulnerability was discovered by Piotr Bania.
-- About the Zero Day Initiative (ZDI):
Established by TippingPoint, a division of 3Com, The Zero Day Initiative
(ZDI) represents a best-of-breed model for rewarding security
researchers for responsibly disclosing discovered vulnerabilities.
-- Disclosure Timeline:
2007.05.22 - Vulnerability reported to vendor
2007.08.14 - Coordinated public release of advisory
-- Credit:
This vulnerability was discovered by Piotr Bania.
-- About the Zero Day Initiative (ZDI):
Established by TippingPoint, a division of 3Com, The Zero Day Initiative
(ZDI) represents a best-of-breed model for rewarding security
researchers for responsibly disclosing discovered vulnerabilities.
-------------- xpdf-poc-integer-overflow.pdf -------------
Greets
Guys from HISPASEC, snoop, thorkill, Piotr Bania, guys from SecurityReason,
#lam3rz@IRCNET and #plhack@IRCNET
Disclaimer
and unknown packing algorithms and it is also suitable to successfully
bypass most of currently used anti-reversing tricks. [...]
Paper can be found at:
http://piotrbania.com/all/articles/pbania-dbi-unpacking2009.pdf
best regards,
pb
--- EOF ---
Greets
+) Kochana Ewa :* :)
+) Guys from HISPASEC, snoop, thorkill, Piotr Bania, tmg, guys from isec.pl,
guys from SecurityReason, #lam3rz@IRCNET and #plhack@IRCNET
+) Colm MacCrthaigh from apache security team.
Disclaimer
