Real Patches Two Serious Player Flaws

By Ed Oswald
Published 20 years ago

RealNetworks patched two significant vulnerabilities that affect most versions of its Real Player software. One flaw, marked as a "high risk," allows a skin file to be downloaded and applied to the player without the user's permission. The file could contain data that causes a heap overflow, according to eEye Digital Security.

The other more serious flaw involves specially formatted .rm movie files. An attacker could use the file to trigger a direct stack overwrite and thus open up a backdoor to execute malicious code. "RealNetworks has received no reports of machines compromised as a result of the now-remedied vulnerabilities," the company said in an advisory, but pointed out that it "takes all security vulnerabilities very seriously." The patches are available through Real Player's built-in update mechanism.

Tags:

11 Comments

11 Responses to Real Patches Two Serious Player Flaws

Got News? Contact Us

Recent Headlines

MiniTool Partition Wizard 13 arrives with smarter data recovery and a clearer high-DPI display -- download it now

Amazon announces Prime Big Deal Days event for October with savings on electronics and holiday gifts

PayPal Links are personalized links for sending and receiving money and cryptocurrency

Microsoft is bringing keyboard backlight controls to Settings in Windows 11

Spotify gives free users more control over their music listening

LG expands xboom Buds lineup with Buds Plus and Buds Lite tuned by will.i.am

Parents struggle to keep pace as teens face rising risks from cyberbullying and deepfakes

Why Trust Us

At BetaNews.com, we don't just report the news: We live it. Our team of tech-savvy writers is dedicated to bringing you breaking news, in-depth analysis, and trustworthy reviews across the digital landscape.

Real Patches Two Serious Player Flaws

11 Responses to Real Patches Two Serious Player Flaws

Recent Headlines

MiniTool Partition Wizard 13 arrives with smarter data recovery and a clearer high-DPI display -- download it now

Amazon announces Prime Big Deal Days event for October with savings on electronics and holiday gifts

PayPal Links are personalized links for sending and receiving money and cryptocurrency

Microsoft is bringing keyboard backlight controls to Settings in Windows 11

Spotify gives free users more control over their music listening

LG expands xboom Buds lineup with Buds Plus and Buds Lite tuned by will.i.am

Parents struggle to keep pace as teens face rising risks from cyberbullying and deepfakes

Most Commented Stories

This updated Windows 11 clone is Linux underneath and makes your old PC run faster -- get it now

Forget Windows 11, Windows 12.2 is the 'next evolution' of Microsoft's OS

As Windows 10 reaches end of life, Windows 11 is LOSING market share

The brilliant Windows 12 is everything Windows 11 isn't -- and the Microsoft OS we deserve

Age verification laws are killing web traffic

Forget Tiny11, Nano11 takes Windows 11 debloating to the next level

Why using a VPN is becoming more important than ever

Microsoft is rolling out Windows 11 25H2

Why Trust Us