RealNetworks RealOne Player/RealPlayer SMIL File Remote Stack Based Buffer Overflow Vulnerability

RealNetworks RealOne Player/RealPlayer SMIL File Remote Stack Based Buffer Overflow Vulnerability

The following proof of concept was supplied:

The following line must be added in an appropriate section of a SMIL file:
<text src="1024_768.en.txt" region="size" system-screen-
size="LONGSTRINGX768">

where "LONGSTRING" should be more than 256 bytes.

The following proof of concept has been released by nolimit@ciso and Buzzdee:

/data/vulnerabilities/exploits/realPlayerSMILFileOverflowPoC.c