Streaming media giant RealNetworks Friday morning posted a patch for a flaw in its video servers that leaves them vulnerable to crippling attacks.
Published:
29 April 2000 y., Saturday
The flaw permits what is known as a "denial- of-service"
attack against specific RealServers. A denial-of- service attack is one that floods a server with a volume of bogus requests or that exploits a vulnerability so that it can't respond to legitimate demands for information. A Buenos Aires-based security firm called Underground Security Systems Research (USSR) posted a demonstration exploiting the flaw and a notification to the Bugtraq security mailing list. RealNetworks learned of the vulnerability and the demonstration exploit, dubbed "realdie.exe," through the Bugtraq
post Thursday and finished work on its remedy last night.
"As soon as we found out about it, we deployed a tiger team to analyze it, created a fix, put it through quality assurance testing, and posted it," a RealNetworks representative said. "We had a group of developers focused on it for the day. We treat all of these things very seriously." The denial-of-service attack and its cousin, the distributed denial-of-service attack, gained notoriety this year after attacks brought down major Web sites including Yahoo, eBay and Amazon.com.
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
A number of MEPs urged Internal Market Commissioner Michel Barnier to come up with common rules to regulate cross border online gambling in Europe.
more »
Think before you post as once you do it is online forever. That was the message on Safer Internet Day marked on 9 February by a seminar in the European Parliament.
more »
50% of European teenagers give out personal information on the web – according to an EU study – which can remain online forever and can be seen by anybody.
more »
When did the Commission start working on social networking sites?
more »
ICSA Labs, an independent division of Verizon Business, is the first independent security-product testing and certification laboratory to earn ISO/IEC 17025 accreditation, validating the laboratory's world-class capabilities.
more »
From today, European citizens, businesses and organisations can register .eu website names using characters from all 23 official languages of the European Union.
more »
Authorities investigated 301 mobile phone services websites in follow-up to EU crackdown on misleading consumer practices.
more »
After nearly 2 years of legislative work the Telecom Package is due to be put to a final vote in Parliament on 24 November in Strasbourg.
more »
The Christian Science Monitor reports that three men have been named as being the masterminds behind the hacking of RBS WorldPay, a subsidiary of the Royal Bank of Scotland.
more »
BAI’s Banking Strategies Insights reports that banks must get serious about improving their ATMs, especially in the area of envelope-free deposit.
more »