A vulnerability has been reported in RealPlayer, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a signedness error in MPAMedia.dll when handling playlist names. This can be exploited to cause a stack-based buffer overflow by e.g. importing a file into a specified playlist with an overly long name via the RealPlayer IERPCtl ActiveX control (ierpplug.dll).
Successful exploitation allows execution of arbitrary code.
NOTE: The vulnerability is currently being actively exploited.