Multiple heap-based buffer overflows in an ActiveX control in RealNetworks RealPlayer 11.0 up to and including 11.1 and RealPlayer SP 1.0 up to and including 1.1.4 allow remote malicious users to execute arbitrary code via a long .smil argument to the (1) tfile, (2) pnmm, or (3) cdda protocol handler.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
realnetworks realplayer 11.0.4 |
||
realnetworks realplayer 11.0.5 |
||
realnetworks realplayer 11.1 |
||
realnetworks realplayer 11.0 |
||
realnetworks realplayer 11.0.2 |
||
realnetworks realplayer 11.0.1 |
||
realnetworks realplayer 11.0.3 |
||
realnetworks realplayer sp 1.0.0 |
||
realnetworks realplayer sp 1.1.1 |
||
realnetworks realplayer sp 1.1.2 |
||
realnetworks realplayer sp 1.1.3 |
||
realnetworks realplayer sp 1.1.4 |
||
realnetworks realplayer sp 1.0.2 |
||
realnetworks realplayer sp 1.1 |
||
realnetworks realplayer sp 1.0.1 |
||
realnetworks realplayer sp 1.0.5 |