subject:"\[Full\-disclosure\] ZDI\-07\-063\: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability"

[Full-disclosure] ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability

2007-10-31 Thread zdi-disclosures

ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-063.html October 25, 2007 -- CVE ID: CVE-2007-2264 -- Affected Vendor: RealNetworks RealPlayer version 10.5 -- Affected Products: RealPlayer 6.x --

Re: [Full-disclosure] ZDI-07-063: RealPlayer RA Field Size File Processing Heap Oveflow Vulnerability

2007-10-31 Thread reepex

user interaction on a random file format? haven't we been over this types of bugs? This pool of zdi bugs is almost more laughable then idefense's aix spam flood On 10/31/07, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: This vulnerability allows remote attackers to execute code on vulnerable