Software // Information Management
News
10/19/2007
05:16 PM
Connect Directly
LinkedIn
Twitter
Google+
RSS
E-Mail
50%
50%

Zero-Day Vulnerability Threatens RealPlayer Users

For those using Microsoft Internet Explorer, visiting a malicious Web page could result in a compromised computer.

A zero-day vulnerability in the latest version of RealPlayer and RealPlayer 11 Beta is actively being exploited, Symantec said Friday morning.

It could allow remote attackers to take control of computers running the affected music player software.

The issue affects an ActiveX object in the RealPlayer component called "ierpplug.dll."

For those using Microsoft Internet Explorer, visiting a malicious Web page could result in a compromised computer. RealPlayer does not have to be running for this exploit to be a risk.

"The malicious .html page checks several versions of RealPlayer to determine if the installed application is vulnerable," said Masaki Suenaga, a member of the Symantec Security Response team, in a blog post. "If it is, the attacker can potentially take control of the computer. Trojan.Reapall, the sample we received, successfully exploits this RealPlayer vulnerability and downloads and executes a copy Trojan.Zonebac."

Trojan.Zonebac is Trojan software that lowers the security zone settings in Microsoft Internet Explorer to make misuse of the computer easier.

Symantec tested the sample exploit code against current versions of RealPlayer 11 Beta and RealPlayer 10.5. Old versions may also be vulnerable.

Symantec offers several strategies for minimizing the impact of the exploit: Setting the kill bit to halt ActiveX in Microsoft Internet Explorer and in Windows Internet Explorer (for the technically savvy only); making sure that all Microsoft Internet Explorer clients present a prompt before executing Active Scripting (which should be turned off if not required); setting Microsoft Outlook and Outlook Express clients to display e-mail in plain text or that HTML messages only get opened in the Restricted sites security zone; and disabling JavaScript.

The antivirus company also recommends that users keep their antivirus software up to date.

Comment  | 
Print  | 
More Insights
The Agile Archive
The Agile Archive
When it comes to managing data, donít look at backup and archiving systems as burdens and cost centers. A well-designed archive can enhance data protection and restores, ease search and e-discovery efforts, and save money by intelligently moving data from expensive primary storage systems.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Tech Digest September 18, 2014
Enterprise social network success starts and ends with integration. Here's how to finally make collaboration click.
Flash Poll
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
The weekly wrap-up of the top stories from InformationWeek.com this week.
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.