Key Information Vulnerability Name: Real Networks Netzip Classic 7.5.1 86 - File Parsing Buffer Overflow (Metasploit) EDB-ID: 17950 CVE: None Verification Status: EDB Verified Author: Metasploit Type: Local Platform: Windows Date: 2011-01-30 Affected Application: Real Networks Netzip Classic 7.5.1 86 Vulnerability Description This module exploits a file parsing buffer overflow vulnerability in Real Networks Netzip Classic 7.5.1 86. To execute commands, the attacker must convince someone to load a specially crafted ZIP file using Netzip Classic. By doing so, the attacker can execute arbitrary code on the victim's machine. Technical Details Rank: GoodSinking License: MSF_LICENSE Authors: - [405118 GMSW], original vulnerability discovery and original exploit - locutus , Metasploit module Version: $Revision: 13952 $ References: - BID: 40859 - URL: http://profarms.real.com/ - URL: http://www.exploit-db.com/exploits/17950/ Platform: win Targets: - Windows XP SP3 - Windows 7/Windows Vista Disclosure Date: 2011-01-30 DefaultTarget: 0 Exploit Code The code demonstrates how to construct a malicious ZIP file to trigger the buffer overflow and execute a payload on the target system.