← back
CVE-2005-0455

CVE-2005-0455

EPSS 54.0%
Stack-based buffer overflow in the CSmil1Parser::testAttributeFailed function in smlparse.cpp for RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1 allows remote attackers to execute arbitrary code via a .SMIL file with a large system-screen-size value.
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/863unverifiedexploitdbwww.exploit-db.com/exploits/16586unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://service.real.com/help/faq/security/050224_playerhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10926http://www.idefense.com/application/poi/display?id=209&type=vulnerabilitieshttp://www.redhat.com/support/errata/RHSA-2005-265.htmlhttp://www.redhat.com/support/errata/RHSA-2005-271.html