updated 02:15 pm EDT, Fri October 1, 2004
eEye has uncovered new affecting a wide range of RealNetworks' media players, including the Mac version, according Techworld. "The flaws could be exploited via a malicious Web page or a RealMedia file run from a local drive to take over a user's system or delete files, according to RealNetworks. The most serious of the three new bugs involves malformed calls, and could be exploited via a player embedded in a malicious site to execute arbitrary code. This bug affects RealPlayer 10, 10.5.... A second bug could also allow malicious code execution, but only via a local RM file, RealNetworks said. The bug affects several versions of RealPlayer and RealOne Player on Windows, Mac OS X and Linux." Update: These security problems are fixed in the final version of RealPlayer 10 (and were only present in the beta).