Unrated severityNVD Advisory· Published Jun 26, 2007· Updated Apr 23, 2026
CVE-2007-3410
CVE-2007-3410
Description
Stack-based buffer overflow in the SmilTimeValue::parseWallClockValue function in smlprstime.cpp in RealNetworks RealPlayer 10, 10.1, and possibly 10.5, RealOne Player, RealPlayer Enterprise, and Helix Player 10.5-GOLD and 10.0.5 through 10.0.8, allows remote attackers to execute arbitrary code via an SMIL (SMIL2) file with a long wallclock value.
Affected products
10cpe:2.3:a:realnetworks:helix_player:10.0.5:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:realnetworks:helix_player:10.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:helix_player:10.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:helix_player:10.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:helix_player:10.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:helix_player:10.5-gold:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:realone_player:*:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:realnetworks:realplayer:10.0:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:realplayer:10.1:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:realplayer:10.5:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:realplayer_enterprise:*:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
21- secunia.com/advisories/25819nvdVendor Advisory
- secunia.com/advisories/25859nvdVendor Advisory
- secunia.com/advisories/26463nvdVendor Advisory
- secunia.com/advisories/26828nvdVendor Advisory
- secunia.com/advisories/27361nvdVendor Advisory
- www.kb.cert.org/vuls/id/770904nvdUS Government Resource
- labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
- osvdb.org/37374nvd
- osvdb.org/38342nvd
- security.gentoo.org/glsa/glsa-200709-05.xmlnvd
- securitytracker.com/idnvd
- securitytracker.com/idnvd
- service.real.com/realplayer/security/10252007_player/en/nvd
- www.attrition.org/pipermail/vim/2007-October/001841.htmlnvd
- www.redhat.com/support/errata/RHSA-2007-0605.htmlnvd
- www.redhat.com/support/errata/RHSA-2007-0841.htmlnvd
- www.securityfocus.com/bid/24658nvd
- www.vupen.com/english/advisories/2007/2339nvd
- www.vupen.com/english/advisories/2007/3628nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35088nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10554nvd
News mentions
0No linked articles in our index yet.