VuXML: realplayer -- remote heap overflow

Exploit 1: To fashion a malicious WAV file to cause a buffer overflow which could have allowed an attacker to execute arbitrary code on a customer's machine.
Exploit 2: To fashion a malicious SMIL file to cause a buffer overflow which could have allowed an attacker to execute arbitrary code on a customer's machine.

VuXML ID	c73305ae-8cd7-11d9-9873-000a95bc6fae
Discovery	2005-03-01
Entry	2005-03-04

Two exploits have been identified in the Linux RealPlayer client. RealNetworks states:

RealNetworks, Inc. has addressed recently discovered security vulnerabilities that offered the potential for an attacker to run arbitrary or malicious code on a customer's machine. RealNetworks has received no reports of machines compromised as a result of the now-remedied vulnerabilities. RealNetworks takes all security vulnerabilities very seriously.

The specific exploits were:

Exploit 1: To fashion a malicious WAV file to cause a buffer overflow which could have allowed an attacker to execute arbitrary code on a customer's machine.

Exploit 2: To fashion a malicious SMIL file to cause a buffer overflow which could have allowed an attacker to execute arbitrary code on a customer's machine.

[source]

CVE Name	CVE-2005-0611
Message	http://marc.theaimsgroup.com/?l=vulnwatch&m=110977858619314
URL	http://service.real.com/help/faq/security/050224_player/EN/

realplayer -- remote heap overflow

Details

References