RealNetworks Real and RealOne Player Unspecified MP3 ActiveX Control Execution Vulnerability

RealNetworks Real and RealOne Player Unspecified MP3 ActiveX Control Execution Vulnerability

NGSSoftware report that a vulnerability affects RealPlayer for Windows. Reports indicate that the issue may be exploited to overwrite an arbitrary file or execute an ActiveX control using a specially formatted malicious MP3 file.

Details about this vulnerability have been withheld until a later date (Sep 27th, 2005). This BID will be updated as soon as this information is made available.