CVE-2007-3410
CVE-2007-3410
Stack-based buffer overflow in the SmilTimeValue::parseWallClockValue function in smlprstime.cpp in RealNetworks RealPlayer 10, 10.1, and possibly 10.5, RealOne Player, RealPlayer Enterprise, and Helix Player 10.5-GOLD and 10.0.5 through 10.0.8, allows remote attackers to execute arbitrary code via an SMIL (SMIL2) file with a long wallclock value.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/4118unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=547http://osvdb.org/37374http://osvdb.org/38342http://secunia.com/advisories/25819http://secunia.com/advisories/25859http://secunia.com/advisories/26463http://secunia.com/advisories/26828http://secunia.com/advisories/27361http://security.gentoo.org/glsa/glsa-200709-05.xmlhttp://securitytracker.com/id?1018297http://securitytracker.com/id?1018299http://service.real.com/realplayer/security/10252007_player/en/