RealPlayer contains a buffer overflow vulnerability that may allow an attacker to execute code on a vulnerable system.
RealPlayer media player that is distributed by RealNetworks. RealPlayer supports streaming and local media.
Per the Zero Day Initiative advisory ZDI-08-046:
By convincing a user to visit a website, a remote attacker may be able to execute arbitrary code.
RealPlayer updates for multiple operating systems are available on the RealNetworks support site. Users are encouraged to apply updates as soon as possible.
Thanks to ZDI for information that was used in this report.
This document was written by Ryan Giobbi.
|Date First Published:||2008-07-28|
|Date Last Updated:||2008-07-28 19:54 UTC|