QwikSec

Security Database

CVE

CWE

Training

CVE-2003-0141

Published: Mar 29, 2003

Modified: Aug 8, 2024

PUBLISHED

Description

The PNG deflate algorithm in RealOne Player 6.0.11.x and earlier, RealPlayer 8/RealPlayer Plus 8 6.0.9.584, and other versions allows remote attackers to corrupt the heap and overwrite arbitrary memory via a PNG graphic file format containing compressed data using fixed trees that contain the length values 286-287, which are treated as a very large length.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20030328 CORE-2003-0306: RealPlayer PNG deflate heap corruption vulnerability

mailing-list

x_refsource_VULNWATCH

vdb-entry

x_refsource_BID

20030328 CORE-2003-0306: RealPlayer PNG deflate heap corruption vulnerability

mailing-list

x_refsource_BUGTRAQ

http://www.coresecurity.com/common/showdoc.php?idx=311&idxseccion=10

x_refsource_MISC

third-party-advisory

x_refsource_CERT-VN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.