RealNetworks patches flaws in media player

Security flaws in RealNetworks' media player software could allow attackers to run arbitrary code on a user's computer, the...

Published: 26 Nov 2002 12:02

Security flaws in RealNetworks' media player software could allow attackers to run arbitrary code on a user's computer, the company warned last week.

Three vulnerabilities exist in the Windows versions of the RealOne Player and RealPlayer, according to a statement on RealNetworks' Web site.

By encouraging a RealOne or RealPlayer user to download a malformed file, an attacker could run code of their choice on a user's system, according to a security advisory sent by Next Generation Security Software to the NTBugtraq mailing list.

Next Generation Security Software said it discovered the flaws and informed RealNetworks on 1 November. It is common for security firms to release their own bulletin after the software maker fixes the problem.

RealNetworks recommends that users install a patch to fix the software, although there are no reports so far of attacks using the exploit.

Click here for the Next Generation Security Software advisory.

RealNetworks patches flaws in media player

Security flaws in RealNetworks' media player software could allow attackers to run arbitrary code on a user's computer, the...

Read more on Antivirus, firewall and IDS products

Security Bytes: FTC cracks down on alleged spyware distributors

Flawed Linux players get RealNetworks patch

RealPlayer's critical vulnerabilities patched

QuickTime and RealPlayer patch critical bugs

Start the conversation

0 comments

Please create a username to comment.

SearchCIO

5 ways to keep developers happy so they deliver great CX

Link software development to measured business value creation

5 digital transformation success factors for 2021

SearchSecurity

8 benefits of a security operations center

Weighing remote browser isolation benefits and drawbacks

Compare 5 SecOps certifications and training courses

SearchNetworking

Network pros share Cisco DevNet certification advice

Cloud automation use cases for managing and troubleshooting

A look inside the official Cisco DEVASC 200-901 guidebook

SearchDataCenter

Avoid server overheating with ASHRAE data center guidelines

Hidden colocation cost drivers to look out for in 2021

5 ways a remote hands data center ensures colocation success

SearchDataManagement

Ataccama automates data governance with Gen2 platform update

IBM to deliver refurbished Db2 for the AI and cloud era

Fauna improves data API collaboration and security

Read more on Antivirus, firewall and IDS products

Security Bytes: FTC cracks down on alleged spyware distributors

Flawed Linux players get RealNetworks patch

RealPlayer's critical vulnerabilities patched

QuickTime and RealPlayer patch critical bugs

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.