RealNetworks RealPlayer includes an embedded player which plays media embedded in a web page.
RealNetworks Windows RealPlayer 126.96.36.199 and earlier versions are vulnerable to remote code execution due to improper bounds checking of the version attribute inside the XML declaration. By persuading a vulnerable user to open a specially crafted
**RMP** file, a remote attacker could cause a stack buffer overflow, allowing execution of arbitrary code on the system.
Upgrade to Windows RealPlayer 188.8.131.52 or higher.
Exploit works against RealPlayer 184.108.40.206 and 220.127.116.11 on Windows XP SP2/SP3.
The user must save the
**.rmp** file and open it in the vulnerable version of RealPlayer.