Link to story: http://www.eweek.com/article2/0,4149,1517953,00.asp

{QUOTE-> RealNetworks Patches Security Holes
By Matt Hicks
February 5, 2004

RealNetworks Inc. recently released a security update to plug a series of vulnerabilities in its media players that could open a user's machine to malicious code.

Security researchers at British-based NGSSoftware Ltd., which issued an advisory on Wednesday, discovered the security holes in December and informed Real Networks of the vulnerabilities.

The Seattle-based Real Networks on Wednesday posted a series of fixes to its Web site.
.
.
. <-QUOTE}

Added URL tags - Pieter http://www.wilderssecurity.com/showthread.php?t=19869

Link to story: http://www.techworld.com/news/index.cfm?fuseaction=displaynews&NewsID=986

{QUOTE-> Real Player struck by massive security hole
System access just one song away.

By Kieren McCarthy, Techworld

Media player Real Player - one of the most used pieces of software on the Internet - has been struck by several highly critical vulnerabilities that could allow a malicious user system access to your PC.

Jouko Pynnönen and Mark Litchfield of NGSSoftware have discovered that by creating altered media and Real Media files (with the filenames .rp, .rt, .ram, .rpm and .smil) it is possible to cause a buffer overflow and run code on the user’s PC.

All the user would have to do is click on the link and the file’s author would be able to run whatever program they liked on the host PC. This is not good.

.
.
. <-QUOTE}