Numerous RealNetworks products do not properly handle chunked data. This vulnerability may allow a remote attacker to execute arbitrary code on a vulnerable system.
RealNetworks RealPlayer is a multimedia application that allows users to view local and remote audio/video content.
By convincing a user to open RealPlayer file hosted on a malicious server, a remote unauthenticated attacker can execute arbitrary code.
Apply the patches supplied in the RealNetwork Security Update for March 2006.
Disable RealPlayer in your web browser
This vulnerability was reported by iDEFENSE Labs.
This document was written by Jeff Gennari.
|Date First Published:||2006-04-05|
|Date Last Updated:||2006-05-17 12:45 UTC|