Computer Security

Search:Software:RealPlayer 10
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Name:REAL : RealPlayer 10

7!Real Player multiple buffer overflows
updated since 25.10.2007
document ActiveX vulnerability is used in-the-wild for silent trojan code installation via Internet Explorer. In addition, there is a buffer overflow on .mov files parsing and .mp3 ID3 tags.
6!Real player media player multiple buffer overflow
updated since 11.11.2005
document Buffer overflows on parsing .rm streams and skin files.
6!Helix Player / Real Player format string bug
updated since 27.09.2005
document Format string bugs on .rt / .rp files parsing.
7!RealPlayer multiple vulnerabilities
updated since 24.06.2005
document Heap overflow on RealText format parsing. Heap overflow on AVI files parsing. Possibility to overwrite local files, ActiveX execution from MP3 file.
6!RealPlayer media player buffer overflow
document Buffer overflow on RAM (real media audio) files parsing.
 Real Player media player .smil and .wav files buffer overflow
updated since 02.03.2005
document Stack based overflow on oversized system-screen- size parameter. Heap overflow on .wav files parsing.
6!Multiple Real products multiple bugs
updated since 30.09.2004
document RealPlayer ActiveX 'ShowPreferences' Buffer Overflow Vulnerability. Malcrafted RMP files arbitrary files deletion.
6!Real Player buffer overflow
document Buffer overflow on rjs (zipped skins) file processing.
6!Multiple RealPlayer buffer overflows
document Buffer overflow during displaying URLs in .ram, buffer overflow during constructing mem: URLs on error page. Buffer overflows during parsing different file formats.
6!Real One / Real Player buffer overflow
document Stack overflow on R3T parsing.
 Real player directory traversal
document Directory traversal in .rjs files allows to place file in any directory.
6!Multiple RealPlayer/RealOne buffer overflows
document Buffer overflows on parsing different file types.
                    
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server