Vulnerability CVE-2003-1509
Published: 2003-12-31   Modified: 2012-02-12

Description:
Real Networks RealOne Enterprise Desktop 6.0.11.774, RealOne Player 2.0, and RealOne Player 6.0.11.818 through RealOne Player 6.0.11.853 allows remote attackers to execute arbitrary script in the local security zone by embedding script in a temp file before the temp file is executed by the default web browser.

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Realnetworks -> Realone enterprise desktop 
Realnetworks -> Realone player 

 References:
http://service.real.com/help/faq/security/securityupdate_october2003.html
http://www.securityfocus.com/bid/8839
https://exchange.xforce.ibmcloud.com/vulnerabilities/13445
Copyright 2024, cxsecurity.com

 

Back to Top