Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer overflow in RealNetworks RealPlayer 8, 10, and 10.5, RealOne Player 1 and 2, and Helix Player 10.0.0 allows remote attackers to execute arbitrary code via an .rm movie file with a large value in the length field of the first data packet, which leads to a stack-based buffer overflow, a different vulnerability than CVE-2004-1481.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RealNetworks RealOne Player/RealPlayer RM文件远程栈溢出漏洞
Vulnerability Description
RealNetworks RealNetworks RealPlayer是美国RealNetworks公司开发的一套媒体播放器产品。该产品提供下载/转换视频(在网页中)、编辑视频、管理媒体文件等功能。 RealNetworks RealPlayer和RealOne Player中存在远程栈溢出漏洞,成功利用这个漏洞的攻击者可以在目标系统上执行任意代码。攻击者可以创建特制的.rm电影文件,将[data packet + 1]的长度域设置为0x80 - 0xFF,这样就可以触发栈溢出。
CVSS Information
N/A
Vulnerability Type
N/A