CVE-2008-5036

VLC Media Player 0.9.x before 0.9.6 is vulnerable to a stack-based buffer overflow in the RealText subtitle parser. The issue arises in the ParseRealText function (modules/demux/subtitle.c) and can allow an attacker to execute arbitrary code when a specially crafted RealText (.rt) subtitle file i...

CVE-2008-5032

Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, bu...

CVE-2008-5032

Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, bu...

Stack overflow

Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, bu...

CVE-2008-5032

Stack-based buffer overflow in VideoLAN VLC media player 0.5.0 through 0.9.5 might allow user-assisted attackers to execute arbitrary code via the header of an invalid CUE image file, related to modules/access/vcd/cdrom.c. NOTE: this identifier originally included an issue related to RealText, bu...

VLC Media Player security vulnerabilities

Buffer overflows on RealText and .cue files parsing...

[TKADV2008-011] VLC media player RealText Processing Stack Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: VLC media player RealText Processing Stack Overflow Vulnerability Advisory ID: TKADV2008-011 Revision: 1.0 Release Date: 2008/11/05 Last Modified: 2008/11/05 Date Reported: 2008/11/03 Author: Tobias Klein tk at trapkit.de Affected Software:...

VLC Media Player 0.5.0 to 0.9.5 Stack-Based Buffer Overflows

A version of VLC between 0.5.0 and 0.9.5 is installed on the remote host. Such versions are affected by the following vulnerabilities : - RealText subtitle file modules\demux\subtitle.c processing is susceptible to a buffer overflow caused by user-supplied data from a malicious subtitle file bein...

Debian Security Advisory DSA 826-1 (helix-player)

The remote host is missing an update to helix-player announced via advisory DSA 826-1. Multiple security vulnerabilities have been identified in the helix-player media player that could allow an attacker to execute code on the victim's machine via specially crafted network resources. CVE-2005-176...

Debian DSA-826-1 : helix-player - multiple vulnerabilities

Multiple security vulnerabilities have been identified in the helix-player media player that could allow an attacker to execute code on the victim's machine via specially crafted network resources. - CAN-2005-1766 Buffer overflow in the RealText parser could allow remote code execution via a...

DSA-826-1 helix-player - multiple

Bulletin has no description...

security flaw

Format string vulnerability in Real HelixPlayer and RealPlayer 10 allows remote attackers to execute arbitrary code via the 1 image handle or 2 timeformat attribute in a RealPix .rp or RealText .rt file...

CVE-2005-2710

Format string vulnerability in Real HelixPlayer and RealPlayer 10 allows remote attackers to execute arbitrary code via the 1 image handle or 2 timeformat attribute in a RealPix .rp or RealText .rt file...

CVE-2005-2710

CVE-2005-2710 is a format string vulnerability in RealNetworks RealPlayer and HelixPlayer. The flaw affects processing of RealPix (.rp) and RealText (.rt) files and can allow a remote attacker to execute arbitrary code in the user’s context via crafted files. Public advisories (RHSA-2005-762/788,...

FreeBSD : linux-realplayer -- RealText parsing heap overflow (95ee96f2-e488-11d9-bf22-080020c11455)

An iDEFENSE Security Advisory reports : Remote exploitation of a heap-based buffer overflow vulnerability in the RealText file format parser within various versions of RealNetworks Inc.'s RealPlayer could allow attackers to execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security,...

GLSA-200507-04 : RealPlayer: Heap overflow vulnerability

The remote host is affected by the vulnerability described in GLSA-200507-04 RealPlayer: Heap overflow vulnerability RealPlayer is vulnerable to a heap overflow when opening RealMedia files which make use of RealText. Impact : By enticing a user to play a specially crafted RealMedia file an...

RealPlayer: Heap overflow vulnerability

Background RealPlayer is a multimedia player capable of handling multiple multimedia file formats. Description RealPlayer is vulnerable to a heap overflow when opening RealMedia files which make use of RealText. Impact By enticing a user to play a specially crafted RealMedia file an attacker coul...

[VulnWatch] iDEFENSE Security Advisory 06.23.05: RealNetworks RealPlayer RealText Parsing Heap Overflow Vulnerability

RealNetworks RealPlayer RealText Parsing Heap Overflow Vulnerability iDEFENSE Security Advisory 06.23.05 www.idefense.com/application/poi/display?id=250&type=vulnerabilities June 23, 2005 I. BACKGROUND RealPlayer is an application for playing various media formats, developed by RealNetworks Inc...

security flaw

Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on Windows, and 10, 10.0.1.436, and other versions before 10.0.5 on Linux, allows remote attackers to execute arbitrary code via a RealMedia file with a long RealText string, such as an SMIL file...

linux-realplayer -- RealText parsing heap overflow

An iDEFENSE Security Advisory reports: Remote exploitation of a heap-based buffer overflow vulnerability in the RealText file format parser within various versions of RealNetworks Inc.'s RealPlayer could allow attackers to execute arbitrary code...