Synopsis: Critical: HelixPlayer security update
Issue date: 2007-06-27
CVE Names: CVE-2007-3410
A buffer overflow flaw was found in the way HelixPlayer processed
Synchronized Multimedia Integration Language (SMIL) files. It was possible
for a malformed SMIL file to execute arbitrary code with the permissions of
the user running HelixPlayer. (CVE-2007-3410)
SL 4.x
SRPMS:
HelixPlayer-1.0.6-0.EL4.2.0.2.src.rpm
i386:
HelixPlayer-1.0.6-0.EL4.2.0.2.i386.rpm
x86_64:
HelixPlayer-1.0.6-0.EL4.2.0.2.i386.rpm
-Connie Sieh
-Troy Dawson