RealOne player 6.0.11.868 allows remote malicious users to execute arbitrary script in the "My Computer" zone via a Synchronized Multimedia Integration Language (SMIL) presentation with a "file:javascript:" URL, which is executed in the security context of the previously loaded URL, a different vulnerability than CVE-2003-0726.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
realnetworks realone player 1.0 |
||
realnetworks realone player 6.0.11.868 |
||
realnetworks realone player 6.0.10.505 |
||
realnetworks realone player 6.0.11.818 |
||
realnetworks realone player 6.0.11.830 |
||
realnetworks realone player 6.0.11.841 |
||
realnetworks realone enterprise desktop 6.0.11.774 |
||
realnetworks realone player 2.0 |
||
realnetworks realone player 6.0.11.853 |
||
realnetworks realplayer 8.0 |