[helix-maintainers] Bug#316276: Still interested?
Daniel Baumann
daniel.baumann at panthera-systems.net
Sat Nov 5 09:10:41 UTC 2005
Florian Weimer wrote:
> could you provide details why you tagged this bug "security", please?
Of course..
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1766
Heap-based buffer overflow in vidplin.dll in RealPlayer 10 and 10.5
(6.0.12.1040 through 1069), RealOne Player v1 and v2, RealPlayer 8 and
RealPlayer Enterprise allows remote attackers to execute arbitrary code
via an .avi file with a modified strf structure value.
--
Address: Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist
Email: daniel.baumann at panthera-systems.net
Internet: http://people.panthera-systems.net/~daniel-baumann/
More information about the helix-maintainers
mailing list