Realplayer has issued a critical patch for a couple vulnerabilities



Incidents.org is reporting that realplayer has issued a patch in response to two vulnerabilities discovered by eEye. The first involves a skin file which could be loaded through the browser without permission and the second, a specially made .rm file which could allow code execution.

Update 11/11 – The security fix has further coverage

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft vulnerability whack-a-mole continues..... Translation - Microsoft patched one vulnerability another surfaces.... Incidents.org brings us the frustrating news.... If you remember the month of browser bugs series of exploits back in July, there was a denial of service there that appears to have code execution after all. Coincidence or not, it got publicly released......
  • Microsoft updates are out for July and they affect no fewer than 18 issues in Office and Windows. 13 issues are tagged as critical, others as important. They are all bundled into 7 update downloads. 8 vulnerabilities within Excel have been addressed in all of this. Office 2000 users will have to manually update (Office XP/2003......
  • Sophos antivirus vulnerabilities... Sans has the story on a security vulnerability involving specifically crafted .cab files affecting a WIDE range of SOPHOS antivirus products (from desktop to server.) The main result of the vulnerability is arbitrary code execution, which is a bad thing.... PureMessage and MailMonitor users may be more at risk because,......
Blog Traffic Exchange Related Websites
  • Installing a Pet Door Installing a unique door for your dog or your cat is a great way for you to make pet ownership a little simpler, because it will allow your pet to go out and come in at will rather than scratching at the door for your attention all throughout the day.......
  • Microsoft Security Bulletin Summary for September 2010 - Issued: September 14, 2010 ******************************************************************** Microsoft Security Bulletin Summary for September 2010 Issued: September 14, 2010 ******************************************************************** This bulletin summary lists security bulletins released for September 2010. The full version of the Microsoft Security Bulletin Summary for September 2010 can be found at http://www.microsoft.com/technet/security/bulletin/ms10-sep.mspx. With the release of the bulletins for September 2010, this......
  • TakeDownCon - Attend a Training and Get an iPad - TakeDownCon Dallas 2011 Free iPad + 10% Discount on Training! SecurityOrb is proud to be one of the Premier Education Partners of the brand new TakeDownCon series, which will be making its debut in Dallas, TX, from May 14 - 19, 2011. Get a FREE iPad and an additional 10% discount when......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site