The SC Magazine Newsteam Blog

RealPlayer flaw patched - so patch!

Author: admin

Filed under: Consumer threats, Trojans, Vulnerabilities

Real Networks on Friday made a patch available for the zero-day vulnerability in its popular RealPlayer. Symantec researchers, a couple of days earlier, had disclosed a highly critical ActiveX vulnerability that could have permitted remote attackers to execute arbitrary code.

The bug affects the latest versions - RealPlayer 10.5 and RealPlayer 11 beta.

Because this application is highly used, users should apply the fix as soon as possible. Researchers said the flaw was being exploited in limited and targeted in-the-wild attacks.

Fix information is available here.

Don’t forget about the non-Microsoft vuls
The eyes of the patching world are focused on the bustling metropolis of Redmond, Wash. tonight, as ...
Another vote against TippingPoint
So the saga of the QuickTime flaw found in a CanSecWest hacking contest is over, right? Well, not qu...
Adobe patches dangerous flaw
Today is turning into a minor version of "Patch Tuesday" for companies. Adobe announced today it ha...
Microsoft saves the world with the ANI patch
Is RBN behind the latest Adobe PDF attacks?

2 Comments so far

Matt Spragins on October 25th, 2007

RealNetworks has issued a patch for this vulnerability that users can download here - http://service.real.com/realplayer/security/191007_player/en/

For more information about these patches and how the new RealPlayer has been improved, please visit the RealPlayer blog at http://www.realplayer.com/blog.

Matt Spragins
Real Networks
Matt Spragins on October 25th, 2007

Here is the correct link to our Blog;

http://realplayer.com/blog

Sorry for any confusion.

Matt Spragins
Real Networks