This is still an unspecified vulnerability, filing to keep track of it.
Since it is related, I'd like to ask, if win32codecs is under control. I'm rather suspecious about its security status, since it includes quite a lot of libraries, a mix of realplayer 8 and 10 in the among them. And the mplayer.hq Changelog is everything else than detailed.
*** Bug 92477 has been marked as a duplicate of this bug. ***
Opened up bug #93136 to tracke the win32codecs issue. On this one it currently appears that only Windows versions are affected, but I'll wait with closing until it is finally confirmed.
At last the adivsory was released: http://www.eeye.com/html/research/advisories/AD20050623.html It only affects another OS.