Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple buffer overflows in RealOne and RealPlayer allow remote attackers to execute arbitrary code via (1) a Synchronized Multimedia Integration Language (SMIL) file with a long parameter, (2) a long long filename in a rtsp:// request, e.g. from a .m3u file, or (3) certain "Now Playing" options on a downloaded file with a long filename.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RealPlayer长文件名'现在播放'功能缓冲区溢出漏洞
Vulnerability Description
RealPlayer是Real公司开发和维护的Real媒体格式播放器软件。 RealPlayer在播放超长文件名文件时检查不够充分,远程攻击者可以利用这个漏洞构建包含恶意超长文件的WEB页,诱使用户使用'现在播放'(Now Playing)打开而导致发生缓冲区溢出。 如果用户在'现在播放'点击鼠标右键,选择'edit clip info'选项,或者在'现在播放'点击鼠标右键,选择拷贝到'my Library',如果此时http url或者rtsp播放的文件名过长,可发生缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A