CVE-2010-4375 Information

Description

Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 Mac RealPlayer 11.0 through 11.1 Linux RealPlayer 11.0.2.1744 and possibly HelixPlayer 1.0.6 and other versions allows remote attackers to execute arbitrary code via malformed multi-rate data in an audio stream.

Reference

http://service.real.com/realplayer/security/12102010_player/en/ http://www.redhat.com/support/errata/RHSA-2010-0981.html http://www.securitytracker.com/id?1024861 http://www.zerodayinitiative.com/advisories/ZDI-10-266