Information Security Blog

RealPlayer has 11 critical vulnerabilities

by admin on Jan.23, 2010, under Flawed Programs

RealPlayer haunted by 11 critical vulnerabilities
A quick heads-up to any computer users out with RealPlayer installed: There are at least 11 critical vulnerabilities that expose Windows, Mac and Linux users to malicious hacker attacks.

RealNetworks released an advisory to warn of the vulnerabilities, which could be exploited via rigged image and media files to launch remote code execution attacks.

The vulnerabilities also affect some versions of the Helix Player for Linux.
Here are the details from the RealNetworks alert:

1. A heap overflow error when processing a malformed ASM Rulebook, which could be exploited to execute arbitrary code.
2. A heap overflow error when processing a malformed GIF file, which could be exploited to execute arbitrary code.
3. A buffer overflow error when processing a malformed media file, which could be exploited to execute arbitrary code.
4. A buffer overflow error when processing a malformed IVR file, which could be exploited to execute arbitrary code.
5. A heap overflow error when processing a malformed IVR file, which could be exploited to execute arbitrary code.

http://blogs.zdnet.com/security/?p=5344&tag=col1;post-5344

:, ,

Leave a Reply

Looking for something?

Use the form below to search the site:

Still not finding what you're looking for? Drop a comment on a post or contact us so we can take care of it!

Visit our friends!

A few highly recommended friends...

Archives

All entries, chronologically...