dedicated server help
web hosting guides
dedicated server home dedicated server forums dedicated server reviews dedicated resources partners dedicated server resources contact dedicated servers

dedicated server guides
Getting Started
General Tutorials
cPanel Tutorials
Security Center
Name Servers
Server Monitoring
Server Backups
Hosting Interviews
Web Hosting News
Reviews
For Fun
Linux Tutorials
Hosting Articles
Web Hosting Tutorials
 
 
 
web hosting tutorials
About Us
RSS Feed
Disclaimer
Site Map

 

RealPlayer Security Flaws Found

Last Updated: May 4, 2010

RealPlayer security flaws found again in 2004, previous exploits were found in February and June of 2004.


According to RealNetworks the new security holes can be exploted by a malicious web page or realmedia file which is run from a local drive to take over a user's system or delete files.

The worst out of the three new bugs discovered is one which involves malformed calls. This bug can execute arbitrary code.

Versions Affected:
Realplayer V 10
Realplayer V 10.5
RealOne Player v1
RealOne Player v2


The second and third bug are also nothing to ignore. The second bug will also allow malicious code execution, however only via a local RM file.

Versions Affected
Several versions of RealPlayer and RealOne Player on Windows, Mac OS X, and Linux.

The third flaw allows a malicious site & malicious media file(s) to delete file(s) on a user's PC. (This only works if the attacker knows where the file is located.)

Versions Affected:
Realplayer V 10
Realplayer V 10.5
RealOne Player v1
RealOne Player v2

cpanel tutorials
cPanel Resources
Dedicated Servers