RealNetworks issues critical patches
Real problems
Tuesday, 29 July 2008, 07:47
INSECURITY RESEARCHERS at Secunia have discovered at least four "highly critical" flaws in RealPlayer that could allow hackers to execute malicious code and obtain data from unsuspecting users. The reported security issues affect Windows, Linux and Mac OS X platforms.
Two of the flaws involve exploiting ActiveX controls to induce memory corruption and a stack-based buffer overflow, while a design error within the handling of frames in Shockwave Flash (SWF) files could be used to create a heap-based buffer overflow.
A fourth, more serious error can be exploited to reference local resources.
RealNetworks has moved to issue product upgrades with security bug fixes.
L'Inq
Secunia
Share this:
Share
Advertisement
Subscribe to the INQ Newsletter
Sign-up for the INQBot weekly newsletter
INQ Whitepapers
Business Intelligence Software
Customer Relationship Management (CRM)
Enterprise Accounting Software
Enterprise Resource Planning (ERP)
Enterprise Systems Management
Jobs
Advertisement
INQ Poll
Who uses RealPlayer nowadays? I use Media Player Classic and am loving it. It is simple, easy to use and none of this fancy ActiveX, Flash business. I hated the RealBadPlayer's pop-up windows so much that I gave up on it.

Do others share the same view? Mind you, DivX might do the same in the future. Any bets?
who?
I gave up on that pop-up ridden piece of junk years ago, not least because if Real got your address they'd spam it six ways from Sunday.
Just checking for updates today on the released version, v10, the only update is to the RC of v11, either for Mac or Windows. When is that fix supposed to be out?