VULHUB ™

A buffer overrun has been discovered in RealPlayer/RealOne Player. By constructing a malicious Synchronized Multimedia Integration Language (SMIL) file, it may be possible to trigger the overrun. Successful exploitation of this issue will result in heap corruption, which may allow for the execution of attacker-supplied code. ** Reports indicate that the patch for this issue supplied by Real Networks does not correct the problem.

A buffer overrun has been discovered in RealPlayer/RealOne Player. By constructing a malicious Synchronized Multimedia Integration Language (SMIL) file, it may be possible to trigger the overrun. Successful exploitation of this issue will result in heap corruption, which may allow for the execution of attacker-supplied code. ** Reports indicate that the patch for this issue supplied by Real Networks does not correct the problem.