QUOTE
If you have RealPlayer installed and use Internet Explorer to browse the web, beware: an exploit in circulation can allow an attacker to take complete control of your machine, Symantec is warning.
Attacks targeting the most recent version of RealNetworks' music and video player were first observed Thursday night. They exploit a vulnerability in the way RealPlayer interacts with IE, providing a stealthy means for miscreants to shoehorn their way into a user's PC.
"If you have RealPlayer installed, simply visiting a malicious Web page can put your computer at risk," a Symantec blog post explains. "The player does not need to be running."
The ActiveX object being exploited resides in the the RealPlayer component ierpplug.dll. Attack code reviewed by Symantec causes RealPlayer to download and execute a copy of Trojan.Zonebac.
Attacks targeting the most recent version of RealNetworks' music and video player were first observed Thursday night. They exploit a vulnerability in the way RealPlayer interacts with IE, providing a stealthy means for miscreants to shoehorn their way into a user's PC.
"If you have RealPlayer installed, simply visiting a malicious Web page can put your computer at risk," a Symantec blog post explains. "The player does not need to be running."
The ActiveX object being exploited resides in the the RealPlayer component ierpplug.dll. Attack code reviewed by Symantec causes RealPlayer to download and execute a copy of Trojan.Zonebac.
LINK
Man I couldn't believe this... I just downloaded the latest version of real-player 11 beta and next then everything on my PC started hanging/rebooting and system would grind to a halt with NO programs running or any processing power being utilized... beware!
