CVE-2008-1309 | Vulnerability Database | Aqua Security

The RealAudioObjects.RealAudio ActiveX control in rmoc3260.dll in RealNetworks RealPlayer Enterprise, RealPlayer 10, RealPlayer 10.5 before build 6.0.12.1675, and RealPlayer 11 before 11.0.3 build 6.0.14.806 does not properly manage memory for the (1) Console or (2) Controls property, which allows remote attackers to execute arbitrary code or cause a denial of service (browser crash) via a series of assignments of long string values, which triggers an overwrite of freed heap memory.

Affected Software

Name	Vendor	Start Version	End Version
Realplayer	Realnetworks	*	*
Realplayer	Realnetworks	10.0 (including)	10.0 (including)
Realplayer	Realnetworks	10.5 (including)	10.5 (including)
Realplayer	Realnetworks	11 (including)	11 (including)

References

http://lists.grok.org.uk/pipermail/full-disclosure/2008-March/060659.html
http://secunia.com/advisories/29315
http://service.real.com/realplayer/security/07252008_player/en/
http://www.kb.cert.org/vuls/id/831457
http://www.securityfocus.com/archive/1/494779/100/0/threaded
http://www.securityfocus.com/bid/28157
http://www.securitytracker.com/id?1019576
http://www.securitytracker.com/id?1020563
http://www.vupen.com/english/advisories/2008/0842
http://www.vupen.com/english/advisories/2008/2194/references
http://www.zerodayinitiative.com/advisories/ZDI-08-047/
https://exchange.xforce.ibmcloud.com/vulnerabilities/41087
https://www.exploit-db.com/exploits/5332

NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-1309
CWE	https://cwe.mitre.org/data/definitions/399.html