Security patches issued for RealPlayers

By Dawn Kawamoto on 04 March 2005
RealNetworks has released a patch for its popular audio-video players in an effort to prevent attacks via buffer overflows.

RealNetwork's patches address vulnerabilities in the software that would allow an attacker to run arbitrary or malicious code on a person's computer when a malicious WAV or SMIL file is processed.

Secunia, a security information company, rated the vulnerabilities as "critical."

RealNetworks released updates on Tuesday for flaws in the Mac RealPlayer 10 and these Windows players: RealPlayer 10.5, RealPlayer 10, RealPlayer Enterprise and certain versions of RealOne Player v2.

Upgrades are required for Windows players RealOne Player v1, RealPlayer 8 and certain versions of RealOne Player v2. Upgrades are also needed for the Mac RealOne Player, Linux RealPlayer 10, and the Helix Player for Linux.

Another flaw was discovered in the players in October. That vulnerability could have allowed an attacker to create fake movie files that would run a program on victims' computers.

Topics: player, audip, ram, real, realplayer

Related Articles

Comments

Post your own comment

You must read and type the 6 chars within 0..9 and A..F

You must read and type the 6 chars within 0..9 & A..F

Submit

Enter your personal information to the left, or sign in with your Facebook account by clicking the button below.

Connect

The Explain Series

Must read

Popular Phones & Plans

Powered by WhistleOut

1) Apple iPhone 3GS 32GB36 plans 1%
2) Apple iPhone 3GS 16GB36 plans 2%
3) Nokia N9741 plans 1%
4) Sony Ericsson Satio12 plans 4%
5) Nokia E7149 plans 1%
Three Vodafone
« 1 of »
1) Apple mobile phones 3%
2) Nokia mobile phones 2%
3) Sony Ericsson mobile phones 3%
4) Blackberry mobile phones 2%
5) Samsung mobile phones 1%

Compare: Mobiles | Broadband

CNET Australia Partner Services