This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects attempts to exploit a memory corruption vulnerability in RealPlayer which could result in remote code execution.
RealNetworks RealPlayer is an application that allows users to play various media formats.
RealPlayer 'rmoc3260.dll' ActiveX control is prone to a memory-corruption vulnerability. This ActiveX control is associated with the following CLSIDs:
This issue affects the 'Console()' method; other methods may also be vulnerable.
An attacker can exploit this issue by enticing an unsuspecting user to view a malicious HTML page.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application using the affected ActiveX control. Failed exploit attempts will likely crash the application.
- RealPlayer 11 is vulnerable; other versions may also be affected.
The vendor addressed this issue in RealPlayer 11.0.2. Please contact the vendor for details.