TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
959
attacks. Problem exists in rmoc3260.ll, GetSource Transport() method to construct a malicious document and lure users
to open, can lead to the collapse of the application. This issue appears to be partially addressed in RealPlayer 11.0.2.
This update provides version 6.0.10.50 of rmoc3260.dll. No remedy available as of July 2008, user can set killbit to the
clsid CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA and 2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93 to resolve
this issue. This signature detects attacks using CLSID and %HH encoding.
Signature ID: 35506
RealNetworks RealPlayer rmoc3260.dll ActiveX Control Memory Corruption
Threat Level: Severe
Industry ID: CVE-CVE-2008-1309
Bugtraq: 28157
Signature Description: RealPlayer is a popular media player. It contains rmoc3260.dll activeX control handling error
boundary conditions exist, remote attacker could use loopholes in the application procedures for Denial of service
attacks. Problem exists in rmoc3260.ll, GetSource Transport() method to construct a malicious document and lure users
to open, can lead to the collapse of the application. This issue appears to be partially addressed in Real Player 11.0.2.
This update provides version 6.0.10.50 of rmoc3260.dll. No remedy available as of July 2008, user can set kill bit to the
clsid CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA and 2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93 to resolve
this issue. This signature detects attacks using CLSID and %uHHHH encoding.
Signature ID: 35507
RealNetworks RealPlayer rmoc3260.dll ActiveX Control Memory Corruption
Threat Level: Warning
Industry ID: CVE-CVE-2008-1309 Bugtraq: 28157
Signature Description: RealPlayer is a popular media player. It contains rmoc3260.dll activeX control handling error
boundary conditions exist, remote attacker could use loopholes in the application procedures for Denial of service
attacks. Problem exists in rmoc3260.ll, GetSource Transport() method to construct a malicious document and lure users
to open, can lead to the collapse of the application. This issue appears to be partially addressed in Real Player 11.0.2.
This update provides version 6.0.10.50 of rmoc3260.dll. No remedy available as of July 2008, user can set kill bit to the
clsid CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA and 2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93 to resolve
this issue. This signature detects attacks using PROGID and GetSourceTransport method.
Signature ID: 35508
RealNetworks RealPlayer rmoc3260.dll ActiveX Control Memory Corruption
Threat Level: Severe
Industry ID: CVE-CVE-2008-1309
Bugtraq: 28157
Signature Description: RealPlayer is a popular media player. It contains rmoc3260.dll activeX control handling error
boundary conditions exist, remote attacker could use loopholes in the application procedures for Denial of service
attacks. Problem exists in rmoc3260.ll, GetSource Transport() method to construct a malicious document and lure users
to open, can lead to the collapse of the application. This issue appears to be partially addressed in Real Player 11.0.2.
This update provides version 6.0.10.50 of rmoc3260.dll. No remedy available as of July 2008, user can set killbit to the
clsid CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA and 2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93 to resolve
this issue.
Signature ID: 35509
RealNetworks RealPlayer rmoc3260.dll ActiveX Control Memory Corruption
Threat Level: Severe
Industry ID: CVE-CVE-2008-1309
Bugtraq: 28157
Signature Description: RealPlayer is a popular media player. It contains rmoc3260.dll activeX control handling error
boundary conditions exist, remote attacker could use loopholes in the application procedures for Denial of service
attacks. Problem exists in rmoc3260.ll, GetSource Transport() method to construct a malicious document and lure users
to open, can lead to the collapse of the application. This issue appears to be partially addressed in RealPlayer 11.0.2.