RealPlayer haunted by 'critical' security holes

If you still have the RealPlayer software on your machine, now might be a good time to uninstall it. If you really need to keep it (why?), it’s definitely time to apply the latest update to avoid malicious hacker attacks.

RealNetworks has shipped a critical update to address multiple vulnerabilities, some serious enough to allow a remote, unauthenticated attacker to execute arbitrary code or obtain sensitive information.

Some raw details:

* CVE-2010-2996: RealPlayer malformed IVR pointer index code execution vulnerability. Affected software: Windows RealPlayer 11.1 and prior.
* CVE-2010-3002: RealPlayerActiveX unauthorized file access vulnerability. Affected software: Windows RealPlayer 11.1 and prior.
* CVE-2010-0116: RealPlayer QCP files parsing integer overflow vulnerability. Affected software: Windows RealPlayer SP 1.1.4 and prior.
* CVE-2010-0117: RealPlayer processing of dimensions in the YUV420 transformation of MP4 content vulnerability. continue reading

Comments

Post a Comment

Popular posts from this blog

KEPONG Gangster甲洞

Image
“ KEPONG ”, a famous local Chinese gang/gangster neighbourhood, is a story about five young men whom are best friends that join a gangster and then faces the reality of gangster life with financial problem, drugs, power and so on, ending up breaking their friendship and bad consequences. From the left: Rayz, Melvin, Hero, Henley & Billy. Although the theme of the film mainly focus on the story of the gangster, however, it still indirectly convey a positive message to the teenage, to highlight to them not to involve in any such activities which might ruin their bright future. The Kepong movie introduce: Director: Teng Bee Casts: Melvin Sia, Henley Hii, Hero Tai and Aunty Lai Meng Genre: Gangsterism, Teenager Release date: 13 September 2012
Read more

Azusa Aida makes her 13th appearance

Image
So what do you do with 21 girls? Hold a Gravure Idol contest that’s what. At Toshimaen Pool, Sankei Sports and One Eight Promotions held their “Visual Queen Photography event in Toshimaen 2010.” 1200 fans were entertained by the girls in their bikinis and other costumes. Azusa Aida made her 13th appearance at the event. She advertised her new DVD that will be released 8/25 and hopes that many people will purchase it. More photo visit; Tokyohive
Read more

Google plugs 'high risk' Chrome browser holes

Image
Google has shipped another Chrome browser update to fix multiple security security vulnerabilities. Some of these security holes can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a user’s system, according to this Secunia advisory.Secunia rates this a “highly critical” update. According to this basic documentation, there are a total of 11 vulnerabilities in this patch batch. Google is withholding details on most of the serious vulnerabilities until the majority of Chrome users are fully patches. Some of the flaws affect Linux users only. Here’s what we know: [48225] [51727] (Medium-risk) Possible autofill / autocomplete profile spamming. [48857] (High-risk) Crash with forms. [50428] (Critical) Browser crash with form autofill. Credit to the Chromium development community. Continue reading
Read more