← back
CVE-2004-0273

CVE-2004-0273

EPSS 4.0%
Directory traversal vulnerability in RealOne Player, RealOne Player 2.0, and RealOne Enterprise Desktop allows remote attackers to upload arbitrary files via an RMP file that contains .. (dot dot) sequences in a .rjs skin file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=107642978524321&w=2http://service.real.com/help/faq/security/040123_player/EN/https://exchange.xforce.ibmcloud.com/vulnerabilities/15123http://www.kb.cert.org/vuls/id/514734http://www.securityfocus.com/bid/9580