Credit:
NASA last week noticed a significant vulnerability in systems on their network running RealPlayer and Internet Explorer. The vulnerability, which was ranked by Symantec as a “10″ on its scale of urgency, has been addressed by ReaNetworks today with a security fix.
The attack targets an ActiveX object installed by RealPlayer, and affects how that object interacts with the Internet Explorer browser. Symantec had independently confirmed that attacks were taking place in the wild and that those attacks have resulted in malicious code being downloaded to users machines, so it is important that if your machine falls within the set of affected systems you apply RealNetworks' security fix.