CVE-2007-3410

Impact:
Critical
Public Date:
2007-06-26
Bugzilla:
245836: CVE-2007-3410 RealPlayer/HelixPlayer buffer overflow

The MITRE CVE dictionary describes this issue as:

Stack-based buffer overflow in the SmilTimeValue::parseWallClockValue function in smlprstime.cpp in RealNetworks RealPlayer 10, 10.1, and possibly 10.5, RealOne Player, RealPlayer Enterprise, and Helix Player 10.5-GOLD and 10.0.5 through 10.0.8, allows remote attackers to execute arbitrary code via an SMIL (SMIL2) file with a long wallclock value.

Find out more about CVE-2007-3410 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (HelixPlayer) RHSA-2007:0605 2007-06-27
Red Hat Enterprise Linux AS version 4 Extras RHSA-2007:0841 2007-08-17
Red Hat Enterprise Linux Supplementary 5 RHSA-2007:0841 2007-08-17
Red Hat Enterprise Linux AS version 3 Extras (realplayer) RHSA-2007:0841 2007-08-17

Last Modified

CVE description copyright © 2017, The MITRE Corporation