Multiple vulnerabilities have been reported in
RealPlayer/RealOne/HelixPlayer, which can be exploited by malicious
people to compromise a user's system.
An input validation error when processing .RA/.RAM files can be
exploited to cause a heap corruption via a specially crafted
.RA/.RAM file with an overly large size field in the header.
An error in the processing of .PLS files can be exploited to cause
a memory corruption and execute arbitrary code via a specially
crafted .PLS file.
An input validation error when parsing .SWF files can be exploited
to cause a buffer overflow via a specially crafted .SWF file with
malformed record headers.
A boundary error when processing rm files can be exploited to
cause a buffer overflow.