CVE-2004-1798 in RealNetworks RealOne Playerinfo

Zusammenfassung (Englisch)

RealOne player 6.0.11.868 allows remote attackers to execute arbitrary script in the "My Computer" zone via a Synchronized Multimedia Integration Language (SMIL) presentation with a "file:javascript:" URL, which is executed in the security context of the previously loaded URL, a different vulnerability than CVE-2003-0726.

Reservieren

04.05.2005

Veröffentlichung

31.12.2004

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
251	RealOne Player SMIL-Dateien beliebige Skripte ausführen		Proof-of-Concept	Offizieller Fix	CVE-2004-1798

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

◂ ZurückÜbersichtWeiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!