All RealPlayer variants contain a number of seven highly critical remote code execution vulnerabilities and as a result RealNetworks released the 15.02.71 version to address the issues.
According to
Secunia, unspecified errors exist in
rvrender when processing RMFF flags. Other similar errors affect the products when processing
RV20 frame size array,
VIDOBJ_START_CODE segments,
RV40 content, height and width values within
RV10 encoded content, and RealAudio
coded_frame_size values.
All these vulnerabilities could allow an attacker to execute arbitrary code, but the vendor
reveals that so far they haven’t received any reports that the weaknesses are being exploited in the wild.
Since all the prior versions were found to be vulnerable, users are advised to immediately update to RealPlayer 15.02.72, which integrates all the security and other
functionality fixes, to prevent any unfortunate incidents.
RealPlayer 15.02.72 is available for download
here.
Find us on Google+
No user comments yet.
Be the first to express your opinion!
