Real Provides Critical Update For Mac, Windows, Linux

Get the WebProNews Newsletter:

[ Business]

The RealPlayer utility has several vulnerabilities patched with the latest security releases from RealNetworks.

The reported vulnerabilities have not generated any reports of exploits according to Real. But the potential for local code execution and buffer overflows have lead Real to announce new updates.

All Mac versions of RealPlayer and RealOne will require an update or an upgrade, respctively. Linux machines running the 10.0.5 versions of either RealPlayer or Helix will not need an update, but older versions will need to be upgraded to patch a heap overflow vulnerability.

For Windows users, especially those that have one of the older versions of RealOne or RealPlayer installed, the company recommends a full upgrade to the latest build of RealPlayer 10.5 ( Likewise, users of an older version of Rhapsody 3 will have to upgrade.

One vulnerability could allow a malicious MP3 file to overwrite a local file or to launch an ActiveX control on the local machine. Depending on the control, a criminal could get access to the user’s machine.

Likewise, a malicious AVI or a RealMedia file could enable remote code execution via a buffer overflow condition. And an exploit exists that could take advantage of systems running older versions of Internet Explorer with default settings.

The Real advisory contains more information.

David Utter is a staff writer for WebProNews covering technology and business. Email him here.

Real Provides Critical Update For Mac, Windows, Linux
Comments Off on Real Provides Critical Update For Mac, Windows, Linux
Top Rated White Papers and Resources

Comments are closed.

  • Join for Access to Our Exclusive Web Tools
  • Sidebar Top
  • Sidebar Middle
  • Sign Up For The Free Newsletter
  • Sidebar Bottom