Bugtraq ID: 27091
RealPlayer is prone to an unspecified buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied data before copying it to an insufficiently sized buffer.
A remote attacker may exploit this vulnerability by presenting a malicious file to a victim and enticing them to open it with the vulnerable application.
Successful exploits can allow attackers to run arbitrary code in the context of the user running the affected application. Failed attacks will likely cause denial-of-service conditions.
This issue affects RealPlayer 11; other versions may also be affected.
RealPlayer 11 Unspecified Buffer Overflow Vulnerability
Published:2008-01-01
Vulnerable:
Real Networks RealPlayer 11
Discription:
<*References
http://gleg.net/realplayer11.html*>
http://www.us-cert.gov/current/index.html#public_exploit_code_for_realplayer
http://www.realnetworks.com/
SEBUG Solution:
--------
暂无
暂无
// Sebug.net [ 2008-01-06 ]