RealNetworks patches flaws in media player software

Security flaws in RealNetworks Inc.’s media player software could allow attackers to run arbitrary code on a user’s computer, the company warned last week.

Three vulnerabilities exist in the Windows versions of the RealOne Player and RealPlayer, according to a statement on RealNetworks’ Web site.

By encouraging a RealOne or RealPlayer user to download a malformed file, an attacker could run code of his/her choice on a user’s system, according to a security advisory sent by Next Generation Security Software Ltd. of Sutton, England, to the NTBugtraq mailing list on Friday.

Next Generation Security Software said it discovered the flaws and informed RealNetworks on Nov. 1. It is common for security firms to release their own bulletin after the software maker fixes the problem.

RealNetworks, of Seattle, recommends users install a patch to fix the software, although there are no reports so far of attacks using the exploit.

The Next Generation Security Software advisory is at:

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0211&L=ntbugtraq&F=P&S=&P=2132.

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Featured Articles

Cybersecurity in 2024: Priorities and challenges for Canadian organizations 

By Derek Manky As predictions for 2024 point to the continued expansion...

Survey shows generative AI is a top priority for Canadian corporate leaders.

Leaders are devoting significant budget to generative AI for 2024 Canadian corporate...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now