CVE-2002-1014 Information

Description

Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379 and RealOne Player Gold 6.0.10.505 allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long value in a CONTROLnImage argument such as CONTROL1Image.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-07/0127.html http://service.real.com/help/faq/security/bufferoverrun07092002.html http://www.iss.net/security_center/static/9538.php http://www.kb.cert.org/vuls/id/843667 http://www.securityfocus.com/bid/5217