VYPR

Realone Desktop Manager

by RealNetworks

CVEs (3)

  • CVE-2003-0726Oct 20, 2003
    risk 0.04cvss epss 0.07

    RealOne player allows remote attackers to execute arbitrary script in the "My Computer" zone via a SMIL presentation with a URL that references a scripting protocol, which is executed in the security context of the previously loaded URL, as demonstrated using a "javascript:" URL…

  • CVE-2004-0258Nov 23, 2004
    risk 0.01cvss epss 0.07

    Multiple buffer overflows in RealOne Player, RealOne Player 2.0, RealOne Enterprise Desktop, and RealPlayer Enterprise allow remote attackers to execute arbitrary code via malformed (1) .RP, (2) .RT, (3) .RAM, (4) .RPM or (5) .SMIL files.

  • CVE-2004-0273Nov 23, 2004
    risk 0.00cvss epss 0.04

    Directory traversal vulnerability in RealOne Player, RealOne Player 2.0, and RealOne Enterprise Desktop allows remote attackers to upload arbitrary files via an RMP file that contains .. (dot dot) sequences in a .rjs skin file.