CVE-2004-1481

Description

Integer overflow in pnen3260.dll in RealPlayer 8 through 10.5 (6.0.12.1040) and earlier, and RealOne Player 1 or 2 on Windows or Mac OS, allows remote attackers to execute arbitrary code via a SMIL file and a .rm movie file with a large length field for the data chunk, which leads to a heap-based buffer overflow.

Affected products

• RealNetworks / helix_player1.0 – 1.0
• RealNetworks / realone_player1.0 – 1.0
• RealNetworks / realone_player2.0 – 2.0
• RealNetworks / realone_player9.0.0.288 – 9.0.0.288
• RealNetworks / realone_player9.0.0.297 – 9.0.0.297
• RealNetworks / realplayer
• RealNetworks / realplayer8.0 – 8.0
• RealNetworks / realplayer8.0 – 8.0
• RealNetworks / realplayer8.0 – 8.0
• RealNetworks / realplayer10.0 – 10.0
• RealNetworks / realplayer10.0 – 10.0
• RealNetworks / realplayer10.0 – 10.0
• RealNetworks / realplayer10.0 – 10.0
• RealNetworks / realplayer10.0 – 10.0
• RealNetworks / realplayer10.0 – 10.0
• RealNetworks / realplayer10.0 – 10.0
• RealNetworks / realplayer10.0_6.0.12.690 – 10.0_6.0.12.690
• RealNetworks / realplayer10.5 – 10.5
• RealNetworks / realplayer10.5_6.0.12.1016 – 10.5_6.0.12.1016
• RealNetworks / realplayer10.5_6.0.12.1040 – 10.5_6.0.12.1040

References

• MISChttp://www.securityfocus.com/bid/11309
• MAILING_LISThttp://marc.info/?l=ntbugtraq&m=109708374115061&w=2
• MISChttp://www.service.real.com/help/faq/security/040928_player/EN/
• VENDOR_ADVISORYhttp://secunia.com/advisories/12672
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/17549