CVE-2003-1509

Real Networks RealOne Enterprise Desktop 6.0.11.774, RealOne Player 2.0, and RealOne Player 6.0.11.818 through RealOne Player 6.0.11.853 allows remote attackers to execute arbitrary script in the local security zone by embedding script in a temp file before the temp file is executed by the default web browser.

Published: Dec 31, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-1509
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
realnetworks / realone_player	6.0.11.841	6.0.11.841.x
realnetworks / realone_player	2.0	2.0.x
realnetworks / realone_enterprise_desktop	6.0.11.774	6.0.11.774.x
realnetworks / realone_player	6.0.11.830	6.0.11.830.x
realnetworks / realone_player	6.0.11.818	6.0.11.818.x
realnetworks / realone_player	6.0.11.853	6.0.11.853.x

http://service.real.com/help/faq/security/securityupdate_october2003.html
http://www.securityfocus.com/bid/8839
https://exchange.xforce.ibmcloud.com/vulnerabilities/13445

Vulnerability Database

289,871

CVE-2003-1509