SecurityRatty: tag: realplayer

Massive RealPlayer Exploit Embedded Attack

2008-01-07 18:58:52 by HASH0x89c7e1c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...RealPlayer exploit serving campaign only. Shall we play the devil's advocate? The campaign would have been far more successful if a malware exploitation kit was used, as by using a single exploit only, the campaign's success entirely relies on the eventual presence of RealPlayer on the infected machine

Tags: exploit, realplayer exploit, uc8010 domain, domain, uc8010, exact exploit, attack uc8010, malware, malware exploitation kits

US-CERT warns of flaw in latest RealPlayer

2008-01-02 00:00:00 by Robert McMillan in Network World on Security

The US-CERT is warning computer users of a possible problem with the latest version of RealPlayer after a Russian security company claimed to have found a way to exploit a critical flaw in the multimedia software IT Audit Checklists Advertisement Prepare for your next internal IT audit. Checklists cover security, risk management, PCI, and more

Tags: audit, checklists cover security, russian security company, audit checklists, multimedia software, us-cert, risk management, critical flaw, computer users

US-CERT issues warnings on Flash, RealPlayer

2008-01-04 08:00:00 by Editor in IT Compliance

RealPlayer is vulnerable to exploit code, and Flash is vulnerable to cross-scripting attacks

Tags: realplayer, exploit code, vulnerable, flash, attacks

Researcher posts attack code for RealPlayer bug

2008-03-11 13:00:00 by Editor in Computerworld Security News

A flaw in RealNetworks' RealPlayer could be used by attackers to hijack Windows machines running Internet Explorer, according to security researcher Elazar Broad

Tags: hijack windows machines, realplayer, internet explorer, attackers, realnetworks, flaw

What If All Vulnerabilities Had This Disclosure Timeline?

2008-02-07 02:08:33 by Chris Wysopal in Zero in a bit

...RealPlayer 11 build 6.0.14.74. It allows for code execution when RealPlayer opens a malicious song file Timeline Dec 16, 2007: Gleg customers notified of vulnerability and given exploit code Jan 1, 2008: Public disclosure (no details) with online demonstration Feb 6, 2008: Vulnerability still not patched Its not your typical disclosure time...

Tags: vulnerability finders, vulnerability, vulnerability exists, heap overflow vulnerability, gleg realplayer vulnerability, gleg customer, customer, gleg, exploit code

Malware Serving Exploits Embedded Sites as Usual

2008-01-09 18:04:58 by HASH0x8957398 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...RealPlayer exploit and MDAC is a fad, but the very same is getting embraced in the short-term by malicious parties in China that have also started combining the Internet Explorer VML Download and Execute Exploit (MS07-004), thanks to recent localized forum postings on modifying the third exploit. Let's assess several sample domains ...

Tags: htm, load uc147, uc147, loads 8v8, 8v8, load 8v8, iframes, recent realplayer exploit, secondary iframes

The Pseudo "Real Players"

2008-01-14 18:12:00 by HASH0x86ec1f0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...RealPlayer massive embedded malware attack ? Two of the main hosts are now, and the third one ucmal.com/0.js is strangely loading an iframe to ISC's blog in between the following 61.188.39.218/pingback.txt which was returning the following message during the last couple of hours " You're welcome for being saved from near infection As I'm...

Tags: main campaign domains, domains, campaign, real players, attack, error, malware attack, error messages, realplayer

The Dutch Embassy in Moscow Serving Malware

2008-01-28 16:07:58 by HASH0x8af6a58 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...RealPlayer Exploit Embedded Attack A Portfolio of Malware Embedded Magazines The New Media Malware Gang The New Media Malware Gang - Part Two Another Massive Embedded Malware Attack I See Alive IFRAMEs Everywhere I See Alive IFRAMEs Everywhere - Part Two Have Your Malware in a Timely Fashion Cached Malware Embedded Sites Compromised Sites...

Tags: malware, attack, malware attack, media malware gang, redirector script, script, alive iframes, royal netherlands embassy, alive

Consumer group slams RealPlayer as 'badware'

2008-02-04 00:00:00 by Robert McMillan in Network World on Security

A consumer advocacy group is blasting RealNetworks for installing adware and other software without properly notifying its users

Tags: consumer advocacy, software, adware, users, realnetworks, properly

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo