Integer overflow in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.0.6 and other versions, allows remote attackers to have an unspecified impact via crafted frame dimensions in an SIPR stream.
http://www.securitytracker.com/id?1024861
http://www.redhat.com/support/errata/RHSA-2010-0981.html
http://service.real.com/realplayer/security/12102010_player/en/