Error
  • JUser::_load: Unable to load user with id: 67

Featured Articles

5th Generation Broadwell 14nm family comes in three lines

5th Generation Broadwell 14nm family comes in three lines

Intel's 5th Core processor family, codenamed Broadwell, will launch in three lines for the mobile segment. We are talking about upcoming…

More...
Broadwell Chromebooks coming in late Q1 2015

Broadwell Chromebooks coming in late Q1 2015

Google's Chromebook OS should be updating automatically every six weeks, but Intel doesn't come close with its hardware refresh schedule.

More...
New round of Nexus phone rumour kicks off

New round of Nexus phone rumour kicks off

Rumours involving upcoming Nexus devices are nothing uncommon, but this year there is a fair bit of confusion, especially on the…

More...
Nvidia officially launches the 8-inch Shield Tablet

Nvidia officially launches the 8-inch Shield Tablet

As expected and reported earlier, Nvidia has now officially announced its newest Shield device, the new 8-inch Shield Tablet. While the…

More...
Aerocool Dead Silence reviewed

Aerocool Dead Silence reviewed

Aerocool is well known for its gamer cases with aggressive styling. However, the Dead Silence chassis offers consumers a new choice,…

More...
Frontpage Slideshow | Copyright © 2006-2010 orks, a business unit of Nuevvo Webware Ltd.
Monday, 11 February 2008 11:33

Realplayer baffled over zero-day flaw claim

Written by

Image

Gleg refuses to spill the beans


Months
after it first revealed a zero-day flaw in Real Player, Russian security company Gleg is refusing to tell anyone how to fix it.

According to Daniweb, Gleg's Evgeny Legerov revealed the zero-day exploit but seems unwilling or unable to provide the necessary data to allow the alleged gaping security hole to be patched. Gleg has been approached several times by RealNetworks and CERT, but has only posted a video showing the heap overflow/code execution exploit in action.

The company is being hounded by others in the IT industry for not handing over details. It means that Gleg customers get client side exploit information before the vendor can patch it. Legerov claims that the exclusivity is required so that his customers can better understand the level of risk that they face.

More here.
Last modified on Monday, 11 February 2008 20:06

E-mail: This e-mail address is being protected from spambots. You need JavaScript enabled to view it
blog comments powered by Disqus

 

Facebook activity

Latest Commented Articles

Recent Comments