CVE-2005-1766

NameCVE-2005-1766
DescriptionHeap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on Windows, and 10, 10.0.1.436, and other versions before 10.0.5 on Linux, allows remote attackers to execute arbitrary code via a RealMedia file with a long RealText string, such as an SMIL file.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-826-1
NVD severitymedium (attack range: remote)
Debian Bugs316276

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
helix-playersource(unstable)1.0.5-1high316276
helix-playersourcesarge1.0.4-1sarge1highDSA-826-1

Notes

Helix Player is affected according to:
<http://service.real.com/help/faq/security/050623_player/EN/>

Search for package or bug name: Reporting problems