RealPlayer Unspecified Buffer Overflow Vulnerability

A recently found unpatched flaw in RealPlayer 11 may lead to execution of arbitrary code.

The vulnerability is caused due to an unspecified error and can be exploited to cause a buffer overflow. Successful exploitation allows execution of arbitrary code. At this time no further information is available.

Currently their are no workarounds or patches available for this vulnerability.

Additional information can be found below.

Secunia advisory:
http://secunia.com/advisories/28276

Gleg.net demonstration of the vulnerability:
http://gleg.net/realplayer11.html

SecurityFocus advisory:
http://www.securityfocus.com/bid/27091/info

Posted by Nathan Heck on January 03, 2008, in Handlers Log.