Description
A certain ActiveX control in RealNetworks RealPlayer 11 allows remote attackers to cause a denial of service (application crash) via a malformed .au file that triggers a divide-by-zero error. NOTE: this might be related to CVE-2007-4904.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by NtWaK0 · pythondoswindows
https://www.exploit-db.com/exploits/4683
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/484449/100/0/threaded
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/4683
URL Repurposed x_refsource_misc
http://www.safehack.com/Advisory/realpdos_au.txt
Scores
EPSS
0.0636
EPSS Percentile
91.1%
Details
CWE
CWE-20
Status
published
Products (1)
realnetworks/realplayer
11
Published
Dec 04, 2007
Tracked Since
Feb 18, 2026