|
|
CVE Reference: CVE-2007-5080 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-5080 |
|
|
Description: Integer overflow in RealNetworks RealPlayer 10 and 10.5, RealOne Player 1, and RealPlayer Enterprise for Windows allows remote attackers to execute arbitrary code via a crafted Lyrics3 2.00 tag in an MP3 file, resulting in a heap-based buffer overflow. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/37434 VIM http://www.attrition.org/pipermail/vim/2007-October/001841.html ST 1018866 SAID Secunia Advisory: SA27361 MISC http://www.ngssoftware.com/advisories/high-risk-vulnerability-in-real-player-id3-tags/ CONFIRM http://service.real.com/realplayer/security/10252007_player/en/ CERT-VN 759385 BID 26214 |
|
| Return to the previous page. |
