1046 matches found
CVE-2007-6224
The RealNetworks RealAudioObjects.RealAudio ActiveX control in rmoc3260.dll, as shipped with RealPlayer 11, allows remote attackers to cause a denial of service browser crash via a certain argument to the GetSourceTransport method...
richfx-overflow.txt
There are multiple stack overflows in the RichFX nprfxins.dll ActiveX Control. I almost positive that this control was installed with RealNetworks RealPlayer. This was tested on Windows XP SP2 fully patched and IE6. This control is marked safe for scripting. I have not tested code execution. PoC ...
RichFX Basic Player 1.1 - ActiveX Control Multiple Buffer Overflow Vulnerabilities
RichFX Basic Player 1.1 - ActiveX Control Multiple Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/26573/info RichFX Basic Player ActiveX Control is prone a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied...
RichFX Basic Player 1.1 - ActiveX Control Multiple Buffer Overflow Vulnerabilities
source: https://www.securityfocus.com/bid/26573/info RichFX Basic Player ActiveX Control is prone a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Successfully exploiting these issues allows remote attackers to execute...
RealNetworks player "Lyrics3" buffer overflow
Overview Multiple RealNetworks media players contain a buffer overflow which could allow a remote attacker to execute arbitrary code on an affected system. Description The RealNetworks RealPlayer and Helix Player applications allow users to view local and remote audio and video content. These...
RealNetworks RealPlayer Playlist Handling Buffer Overflow (CVE-2007-5601)
RealNetworks RealPlayer and RealOne Player are media player applications that are capable of playing back numerous multimedia file formats. A buffer overflow vulnerability has been reported in RealNetworks RealPlayer application. The vulnerability is due to an error in a RealPlayer ActiveX contro...
ZDI-07-062: RealNetworks RealPlayer PLS File Memory Corruption Vulnerability
ZDI-07-062: RealNetworks RealPlayer PLS File Memory Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-062.html October 25, 2007 -- CVE ID: CVE-2007-4599 -- Affected Vendor: RealNetworks -- Affected Products: RealNetworks RealPlayer version 10.5 -- TippingPointTM IPS...
RealNetworks RealPlayer SWF Processing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of the RealNetworks RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...
ZDI-07-061: RealNetworks RealPlayer SWF Processing Remote Code Execution Vulnerability
ZDI-07-061: RealNetworks RealPlayer SWF Processing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-061.html October 25, 2007 -- CVE ID: CVE-2007-2263 -- Affected Vendor: RealNetworks -- Affected Products: RealNetworks RealPlayer version 10.5 -- TippingPointT...
ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability
ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-063.html October 25, 2007 -- CVE ID: CVE-2007-2264 -- Affected Vendor: RealNetworks RealPlayer version 10.5 -- Affected Products: RealPlayer 6.x -- TippingPointTM IPS...
CVE-2007-5081
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted RM file...
CVE-2007-2264
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM .ra or .ram file with a large size value in the RA header...
CVE-2007-2264
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM .ra or .ram file with a large size value in the RA header...
CVE-2007-5081
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted RM file...
Heap overflow
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a crafted RM file...
CVE-2007-2263
Heap-based buffer overflow in RealNetworks RealPlayer 10.0, 10.1, and possibly 10.5, RealOne Player, and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an SWF Flash file with malformed record headers...
CVE-2007-2263
Heap-based buffer overflow in RealNetworks RealPlayer 10.0, 10.1, and possibly 10.5, RealOne Player, and RealPlayer Enterprise allows remote attackers to execute arbitrary code via an SWF Flash file with malformed record headers...
CVE-2007-4599
Stack-based buffer overflow in RealNetworks RealPlayer 10 and possibly 10.5, and RealOne Player 1 and 2, for Windows allows remote attackers to execute arbitrary code via a crafted playlist PLS file...
CVE-2007-5080
Integer overflow in RealNetworks RealPlayer 10 and 10.5, RealOne Player 1, and RealPlayer Enterprise for Windows allows remote attackers to execute arbitrary code via a crafted Lyrics3 2.00 tag in an MP3 file, resulting in a heap-based buffer overflow...
Heap overflow
Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows remote attackers to execute arbitrary code via a RAM .ra or .ram file with a large size value in the RA header...