Info

Last Modified

about 1 year ago

Percent Complete

Disclosure

Oct 25, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

This Entry needs help! It is only 5% Complete. Click the edit link above to add more information.

Contributing is fast and easy, and benefits the entire security community.

Keywords

No Keywords

Description

(Description Provided by CVE) : Stack-based buffer overflow in RealNetworks RealPlayer 10 and possibly 10.5, and RealOne Player 1 and 2, for Windows allows remote attackers to execute arbitrary code via a crafted playlist (PLS) file.

Classification

Attack Type: Input Manipulation

Products

Unknown or Incomplete

References

Security Tracker: 1018866
CVE ID: 2007-4599 (see also: NVD)
Bugtraq ID: 26214
Secunia Advisory ID: 27361
ISS X-Force ID: 37438
FrSIRT Advisory: ADV-2007-3628
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-11/0011.html
http://www.attrition.org/pipermail/vim/2007-October/001841.html
Vendor Specific News/Changelog Entry: http://service.real.com/realplayer/security/10252007_player/en/
Other Advisory URL: http://www.zerodayinitiative.com/advisories/ZDI-07-062.html

Tools & Filters

Nessus	27591

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches