RealNetworks RealPlayer 'rmoc3260.dll' ActiveX Control Memory Corruption Vulnerability
An attacker can exploit this issue by enticing an unsuspecting victim to view a malicious HTML page.
UPDATE (April 3, 2008): This issue is being actively exploited in the wild.
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
The following proof of concept and exploit code are available: