Threat Level: green Handler on Duty: Bojan Zdrnja

SANS ISC: RealServer Vulnerability, Exploit and Scans - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
RealServer Vulnerability, Exploit and Scans

Earlier this week, a vulnerability in RealServer was announce. This vulnerability may be exploitable via port 554, 7070, 8080, 9090 and 22010. After the announcement, we did see a notable increase in scans for port 554 and 7070.

At this point, no patch is available. However, Real published configuration options to avoid the vulnerability.

Real Networks Announcement:

http://service.real.com/help/faq/security/rootexploit082203.html

Port 554 Graph:

http://isc.sans.org/port_details.html?port=554

Port 7070 Graph:

http://isc.sans.org/port_details.html?port=7070

Please send any additional information, like packet captures, to isc@sans.org .
Handlers

76 Posts

Sign Up for Free or Log In to start participating in the conversation!