Internet Explorer with an installed version of Real Player beware. A vulnerability has been discovered recently which could allow remote code execution. According to Zdnet users should either switch browsers for the time until an patch is released or disabling killbits for two Active X classes. They forgot to mention the third option which would be to uninstall Real Player (temporarily).
Affected are all Real Player versions running under Internet Explorer. Microsoft has an article up that explains Killbits and what they do. They basically prevent Active X controls from being loaded in Internet Explorer. I still would recommend to either switch to Firefox or Opera temporarily or uninstall Real Player for the time until a security patch has been created.
Researcher Elazar Broad has posted to the Full Disclosure mailing list a so-called heap overflow vulnerability that makes it possible for an attacker to modify heap blocks after they are freed and overwrite certain registers.
The killbits that should be disabled are the following:
- 2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93
- CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA
This will definitely have the effect that some Real Player functions will stop working properly.
Related posts:
Internet Explorer Vulnerability FixInternet Explorer Clipboard Vulnerability
Adobe Reader, Acrobat and Flash Player Zero Day Vulnerability
Adobe Flash Player Clickjacking Vulnerability
VLC Player Vulnerability
Microsoft Internet Explorer Security Update
You better stop using Internet Explorer for now
Internet Explorer 6 crashes when loading websites after update
[...] Vía | Ghacks [...]
[...] Real Player Internet Explorer vulnerability [...]