All the latest UK technology news, reviews and analysis
|
|
|
29 Jul 2008
RealNetworks has issued a new security advisory for its RealPlayer multimedia player.
The advisory addresses four vulnerabilities which could be exploited by an attacker to remotely execute code on a vulnerable system.
Two of the flaws target ActiveX vulnerabilities, and both could allow an attacker to remotely execute code.
ActiveX controls are used by Internet Explorer to interact with third-party applications.
The other two flaws include a vulnerability in the handling of SWF files and a flaw described by the company as a "local resource reference" vulnerability.
Version 10.5 and earlier of the Windows version of RealPlayer are vulnerable to all four flaws, while the 11.0.0 versions are vulnerable only to one of the ActiveX flaws. Mac and Linux versions of RealPlayer 10 are vulnerable to the SWF flaw.
Users are advised to update to the most recent version of RealPlayer 11 on all three platforms.
None of the four vulnerabilities affects the Rhapsody 4 software, nor any of Real's mobile handset software offerings.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
UK Based Channel Sales Executive - Security and Service...
Graduate Developer - Manchester. My client has an opening...
.Net Graduate Developer - Manchester. My client is looking...
Accounting Business Analyst/Systems Accountant (Back...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?