|
|
|
|
| |
| RealNetworks RealServer suffers from a vulnerability that enables attackers to read its memory content. This will give out information about the server configuration, runtime memory data, tokens and authentication credentials. The information allows an external attacker to possibly obtain administrative access to the server or to data belonging to other user sessions. |
| |
Credit:
The information has been provided by Iv?n Arce.
|
| |
Vulnerable Packages/Systems:
Real Networks Real Server version 7 and below, all supported platforms.
Solution/Vendor Information/Workaround:
A description of the problem and an updated version of Real Server are available at:
http://service.real.com/help/faq/security/memory.html
Technical Description:
Issuing a request to a RealServer with the following URI:
http://targetserver/admin/includes/ (note the ending slash)
Will generate a response containing random pieces of the server's runtime memory. This generally consists of data from previous sessions and contains information that could be used to obtain unauthorized access to the RealServer administration facilities (cookies sent to other clients, BASE64 encoded usernames and passwords, the random port number where the administration server listens, etc.)
|
|
|
|
|
|
|
|
|
|
