October 22, 2007 2:03 PM PDT

RealNetworks patches exploited security hole

by Robert Vamosi

To address a security hole being exploited by hackers, RealNetworks has issued a security fix for the Windows versions of RealOne Player, RealOne Player version 2, RealPlayer 10.5 and RealPlayer 11 beta. The Windows versions of RealPlayer 8 and earlier versions of RealNetworks are not vulnerable. Linux and Macintosh versions of RealPlayer are also not affected.

The attack targets an ActiveX object installed by RealPlayer, and affects how that object interacts with the Internet Explorer browser. The exploit, if executed, can corrupt process memory and execute arbitrary code.

Affected users should upgrade to RealPlayer 10.5 or RealPlayer 11 beta and install the the latest patch, which was released Friday.

As CNET's resident security expert, Robert Vamosi has been interviewed on the BBC, CNN, MSNBC, and other outlets to share his knowledge about the latest online threats and to offer advice on personal and corporate security. Listen to his podcast at securitybites.cnet.com or e-mail Robert with your questions and comments.

Topics:: Security,; Music

Tags:: security,; RealNetworks,; RealPlayer

Share:: Digg; Del.icio.us; Reddit; Facebook

About News Blog

Recent posts on technology, trends, and more.

Add this feed to your online news reader

Inside CNET News

Scroll Left Scroll Right

Business Tech
EMC raises bid for Data Domain
In the battle for Data Domain, EMC increases its bid to $33.50 per share in cash and says its offer is "clearly superior" to NetApp's bid.
Gallery
Photos: 'Train warriors, test weapons'
Software, Interrupted
Twitter as music marketing tool
Users of the micro-blogging service may be fertile marketing ground for music labels, but the labels must balance the conversation.
Beyond Binary
Will Windows 7 be finalized next week?
Microsoft has said that work on the OS should be done by the end of the month, but some enthusiast sites think it could happen as early as July 13.
Video
Video: iPhone 3G S launch in New York City
CNET News Daily Podcast
CNET News Daily Podcast: Beware URL shorteners
Windows 7 to be finalized this week; Electric motorcycles in Best Buy; ABC on Hulu; and the dangers of the short URL.
Video
A recipe for high-tech chocolate
The Social
Andreessen: Facebook revenue to top $500 million in '09
The Netscape founder, a member of Facebook's board of directors, says the social network has the potential to be a billion-dollar company already.
Cutting Edge
Large Hadron Collider grid stress-tested
The tests, which were deemed a success, threw huge amounts of data at the grid that will process information from the collider.
Gallery
Photos: Spiral Jetty, Robert Smithson's wondrous earthwork
iPod accessories
EzCube FM Transmitter: Super tiny, works great
The Eznex ENA7000 EzCube FM transmitter is a great performer in a teeny, tiny package, and is a good choice if you don't mind the messy setup.
Green Tech
Report: Toyota to mass-produce plug-ins in 2012
The first plug-in Priuses will be tested next year with plans at Toyota to mass-produce plug-in vehicles in 2012, according to a report in the Nikkei.