RealNetworks RealPlayer SWF File Processing Remote Code Execution Vulnerability

RealNetworks RealPlayer SWF File Processing Remote Code Execution Vulnerability

RealNetworks RealPlayer is prone to a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data.

An attacker can exploit this issue to execute arbitrary code within the context of the application that invoked the ActiveX control (typically Internet Explorer). Failed exploit attempts will result in a denial-of-service condition.

This issue was previously disclosed in BID 26214 (RealNetworks RealPlayer File Parsing Routines Multiple Vulnerabilities).