PublicDate: 2007-10-31 17:46:00 UTC
Candidate: CVE-2007-2264
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2264
Description:
 Heap-based buffer overflow in RealNetworks RealPlayer 8, 10, 10.1, and
 possibly 10.5; RealOne Player 1 and 2; and RealPlayer Enterprise allows
 remote attackers to execute arbitrary code via a RAM (.ra or .ram) file
 with a large size value in the RA header.
Ubuntu-Description:
Notes:
 kees> http://service.real.com/realplayer/security/10252007_player/en/ "Issue 5"
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

upstream_realplayer: released (10.0.9)
dapper_realplayer: ignored (reached end-of-life)
edgy_realplayer: DNE
feisty_realplayer: DNE
gutsy_realplayer: DNE
hardy_realplayer: DNE
intrepid_realplayer: DNE
jaunty_realplayer: DNE
karmic_realplayer: DNE
devel_realplayer: DNE

upstream_helix-player: not-affected
dapper_helix-player: not-affected
edgy_helix-player: not-affected
feisty_helix-player: not-affected
gutsy_helix-player: not-affected
hardy_helix-player: not-affected
intrepid_helix-player: not-affected
jaunty_helix-player: not-affected
karmic_helix-player: not-affected
devel_helix-player: DNE