Synopsis: Critical: HelixPlayer security update Issue date: 2007-06-27 CVE Names: CVE-2007-3410 A buffer overflow flaw was found in the way HelixPlayer processed Synchronized Multimedia Integration Language (SMIL) files. It was possible for a malformed SMIL file to execute arbitrary code with the permissions of the user running HelixPlayer. (CVE-2007-3410) SL 4.x SRPMS: HelixPlayer-1.0.6-0.EL4.2.0.2.src.rpm i386: HelixPlayer-1.0.6-0.EL4.2.0.2.i386.rpm x86_64: HelixPlayer-1.0.6-0.EL4.2.0.2.i386.rpm -Connie Sieh -Troy Dawson