CVE-2005-2922

Impact:
Critical
Public Date:
2006-03-22
Bugzilla:
1617766: CVE-2005-2922 security flaw

The MITRE CVE dictionary describes this issue as:

Heap-based buffer overflow in the embedded player in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, and Helix Player allows remote malicious servers to cause a denial of service (crash) and possibly execute arbitrary code via a chunked Transfer-Encoding HTTP response in which either (1) the chunk header length is specified as -1, (2) the chunk header with a length that is less than the actual amount of sent data, or (3) a missing chunk header.

Find out more about CVE-2005-2922 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux AS version 4 Extras RHSA-2005:762 2005-09-27
Red Hat Enterprise Linux AS version 3 Extras RHSA-2005:762 2005-09-27
Red Hat Enterprise Linux 4 (HelixPlayer) RHSA-2005:788 2005-09-27

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.