RealNetworks issues critical patches

Real problems

By Aharon Etengoff

Tue Jul 29 2008, 07:47

INSECURITY RESEARCHERS at Secunia have discovered at least four "highly critical" flaws in RealPlayer that could allow hackers to execute malicious code and obtain data from unsuspecting users. The reported security issues affect Windows, Linux and Mac OS X platforms.

Two of the flaws involve exploiting ActiveX controls to induce memory corruption and a stack-based buffer overflow, while a design error within the handling of frames in Shockwave Flash (SWF) files could be used to create a heap-based buffer overflow.

A fourth, more serious error can be exploited to reference local resources.

RealNetworks has moved to issue product upgrades with security bug fixes.

L'Inq
Secunia

Newly patched Safari flaws pose serious risks A proof-of-concept remote code execution exploit is available Thursday, 13 October 2011, 11:26 AM Read more	Adobe patches critical vulnerabilities in Flash Player Attacks are already seen in the wild Thursday, 22 September 2011, 10:06 AM Read more
Google Chrome is released with a new and improved Flash Player War on Flash cookies Friday, 13 May 2011, 10:09 AM Read more	Google squashes Chrome security bugs, updates Flash Player Bug-finders win cash prizes Friday, 15 April 2011, 13:25 PM Read more
Adobe Flash Player is hit by zero-day attacks again A recurring case of deja vu Tuesday, 12 April 2011, 11:18 AM Read more	Safari and Internet Explorer are hacked first at Pwn2Own contest Chrome escapes, for now Thursday, 10 March 2011, 11:18 AM Read more

< Previous article| Next article >

Comments

Fixed? How?

Just checking for updates today on the released version, v10, the only update is to the RC of v11, either for Mac or Windows. When is that fix supposed to be out?

posted by : MyLifeIsNotAMovie, 04 August 2008 Complain about this comment

Are they still around?

I gave up on that pop-up ridden piece of junk years ago, not least because if Real got your address they'd spam it six ways from Sunday.

posted by : Francois, 30 July 2008 Complain about this comment

real networks

who?

posted by : asdf, 29 July 2008 Complain about this comment

RealBadPlayer

Who uses RealPlayer nowadays? I use Media Player Classic and am loving it. It is simple, easy to use and none of this fancy ActiveX, Flash business. I hated the RealBadPlayer's pop-up windows so much that I gave up on it.

Do others share the same view? Mind you, DivX might do the same in the future. Any bets?

posted by : Anon, 29 July 2008 Complain about this comment

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

Publisher (Business Develo

Publisher (Business Develop...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

RealNetworks issues critical patches

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review