CVE-2005-2055

RealPlayer 8, 10, 10.5 (6.0.12.1040-1069), and Enterprise and RealOne Player v1 and v2 allows remote malicious web server to create an arbitrary HTML file that executes an RM file via "default settings of earlier Internet Explorer browsers".

Published: Jun 29, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-2055
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
realnetworks / realplayer	10.0	10.0.x
realnetworks / realone_player	2.0	2.0.x
realnetworks / realplayer	8.0	8.0.x
realnetworks / realplayer	10.5_6.0.12.1040_1069	10.5_6.0.12.1040_1069.x
realnetworks / realone_player	1.0	1.0.x
realnetworks / realplayer	-	-

http://service.real.com/help/faq/security/050623_player/EN/

Vulnerability Database

289,871

CVE-2005-2055