Linux Real, HelixPlayer Users at Risk

A flaw in the Linux and Unix versions of RealPlayer and HelixPlayer could put users at risk of attack, according to at least two security firms. Making matters worse, exploit code is now publicly available on the Internet due to a leak in an Internet chat room.

The problem stems from a format string error that the programs run into when parsing a specially created RealPix or RealText document. An attacker could take complete control of a system by exploiting this vulnerability.

The flaw is only known to occur on the Linux and Unix platforms. Windows and Mac users are currently immune to any attack in this manner, according to security advisories.

The French Security Incident Response Team has labeled the flaw as "critical," it's highest level, and security firm Secunia gave a rating of "highly critical," it's second highest.

"To exploit this remotely, a user just needs to place the created file on a web site and provide a link so users can click the file, launching RealPlayer and [thus] exploiting the vulnerability," a researcher that went by the handle c0ntexb said in an advisory.

Real has been informed of the problem and was working on a fix for it. However, word of the research and the exploit code apparently leaked through discussions on a Internet relay chat (IRC) channel.

"Moral of the story, don't talk about personal research on IRC. Thank you plagiarizers," the researcher said.

Secunia advises users of RealPlayer and HelixPlayer on Linux or Unix platforms not to open RealMedia files from non-trusted sites until a fix is provided.