Updated: April 20, 2000
Denial of Service.
Stack overflow in the PNA protocol handling scheme.
It was recently brought to our attention that there exists a means by which a hacker, using a malicious program over the Internet, can temporarily shut down a RealServer. The specific exploit involves a stack overflow in the PNA protocol handling scheme that ultimately causes the RealServer to discontinue serving streams until the RealServer is restarted or "rebooted" by the System Administrator.
Although we have not yet received any reported instances of actual attacks, we have addressed this issue quickly with an update to the RealServer software that would defeat such an attack.
You can check the version number of your RealServer by choosing "About" in your RealSystem Administrator or by typing 'rmserver -v' at the command line from the same directory as the rmserver executable.
While RealNetworks endeavors to provide you with the highest quality products and services, we cannot guarantee and do not warrant that the operation of any RealNetworks product will be error-free, uninterrupted or secure. See your original license agreement for details of our limited warranty or warranty disclaimer.