toggle

AAPL Stock: 476.68 ( 0 )

Security holes affect RealNetworks' media player

updated 02:15 pm EDT, Fri October 1, 2004

RealPlayer security


eEye has uncovered new affecting a wide range of RealNetworks' media players, including the Mac version, according Techworld. "The flaws could be exploited via a malicious Web page or a RealMedia file run from a local drive to take over a user's system or delete files, according to RealNetworks. The most serious of the three new bugs involves malformed calls, and could be exploited via a player embedded in a malicious site to execute arbitrary code. This bug affects RealPlayer 10, 10.5.... A second bug could also allow malicious code execution, but only via a local RM file, RealNetworks said. The bug affects several versions of RealPlayer and RealOne Player on Windows, Mac OS X and Linux." Update: These security problems are fixed in the final version of RealPlayer 10 (and were only present in the beta).


by MacNN Staff

print
email
(13)

TAGS :

 troubleshooting

Related Articles

Recent Articles

toggle

Comments

  1. CambAngst

    Forum Regular

    Joined: Aug 2003

    0
    10/01, 11:46am | report spam | Reply |

    Moral of the story...

    never install Real c*** on any computer you care about.

    Then again, I'm sure you knew that already.

  1. beeble

    Fresh-Faced Recruit

    Joined: Mar 2004

    0
    10/01, 11:56am | report spam | Reply |

    Spin

    How are they going to spin this to blame Steve Jobs?

  1. MacnTX

    Fresh-Faced Recruit

    Joined: Apr 2004

    0
    10/01, 11:57am | report spam | Reply |

    Surprised?

    This is precisely why I keep Rob (have another donut) Glaser's c*** off of my Mac in the first place.

  1. the_glassman

    Mac Elite

    Joined: Apr 2003

    0
    10/01, 12:24pm | report spam | Reply |

    REAL Favor!

    Real should do everyone a big favor and curl up and die! All of their software has and always will suck. The quicker they go under, the better.

  1. riverfreak

    Mac Enthusiast

    Joined: Aug 2001

    0
    10/01, 12:27pm | report spam | Reply |

    bug...or feature?

    I bet Real added this code as a feature to allow access to users machines. The RIAA probably had something to do with it, too. :) Now it's a bug because it's been discovered. Time to shutter up those offices Real, and have a fire sale on your Aerons and cubicle walls.

  1. testudo

    Fresh-Faced Recruit

    Joined: Aug 2001

    0
    10/01, 01:01pm | report spam | Reply |

    Surprised?

    Wait, I thought Real's software was a virus. Its caused me countless hours of frustration and irritation, locking up my system, causing data loss, and has always been a pain to uninstall. If that's not a virus, I don't know what is. (Just an FYI, I also consider anything from Symantec as a virus as well - nothing like having trouble booting because you loaded in a new set of virus definitions).

  1. Jablabla

    Fresh-Faced Recruit

    Joined: Jan 2000

    0
    10/01, 01:07pm | report spam | Reply |

    turds

    And everytime you view a real player link it leaves a t*** ram file your desktop. Not to mention crashing often.

  1. Jablabla

    Fresh-Faced Recruit

    Joined: Jan 2000

    0
    10/01, 01:09pm | report spam | Reply |

    thats it

    Real removed from hard drive.

  1. redwood

    Fresh-Faced Recruit

    Joined: Oct 2003

    0
    10/01, 01:58pm | report spam | Reply |

    You can be smarter....

    If you look at the linked articled, it has a link to a service page on real which clear explains what the exploits are and which versions are imapcted. The latest Mac player is not, in fact, effected.

    Remember that Apple just suffered two vulnerabilities with iChat a fact pointed out in the article. Remember two update a few weeks ago?

    Stop wishing Real to go out of business. The people who work there have families and children and work hard to make a better product. Just because you're a rabid apple fan doesn't mean you have to wish ill health on people.

    If you don't like the product, don't use it. But don't accuse them of doing something they're not doing.

  1. MChieh

    Fresh-Faced Recruit

    Joined: Jul 2000

    0
    10/01, 02:27pm | report spam | Reply |

    Real

    I don't wish ill will or foreclosure on Real. They're certainly entitled to compete in the same business as Apple. I just wish they wouldn't resort to blatant cheap and illegal tactics (i.e. marketing under false intentions and pretenses) when doing so.

Show More Comments

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

10 Most Read

Recent Reviews

Logitech Cube

The world of mice could often be described charitably as stagnant: it's an endless sea of ergonomic shapes that assume you're sitting ...

NewerTech and Targus USB Hubs For Gifts

A useful holiday present to resolve an ongoing frustration is a multi-port hub. Whether as a stocking stuffer, Chanukah present, or an ...

X-Rite ColorMunki Photo

Color calibration is the art of tweaking your monitor so that the colors represented on screen better match real life and your printer ...

toggle

Most Commented

10 Most Discussed

 

Popular News