RealPlayer ActiveX control playlist name buffer overflowAdded: 10/25/2007
BackgroundRealPlayer and RealOne Player include a number of ActiveX controls allowing functions to be called by scripts embedded in web pages.
ProblemThe RealPlayer Database Component (MPAMedia.dll) is affected by a buffer overflow vulnerability when handling playlist names. This vulnerability can be exploited through the ierpplug.dll ActiveX control, allowing command execution when the user loads an attacker's web page.
ResolutionApply the patch provided by RealNetworks.
LimitationsExploit works on RealNetworks RealPlayer 10-5 Gold 10.5-188.8.131.522 and requires a user to load the exploit page in Internet Explorer.
Back to exploit index