Vulnerabilities > CVE-2005-2054 - Remote Security vulnerability in RealPlayer

CVSS 5.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

high complexity

realnetworks

NVD

Published: 2005-06-29

Updated: 2008-09-05

Summary

Unknown vulnerability in RealPlayer 10 and 10.5 (6.0.12.1040-1069) and RealOne Player v1 and v2 allows remote attackers to overwrite arbitrary files or execute arbitrary ActiveX controls via a crafted MP3 file.

Vulnerable Configurations

Part	Description	Count
Application	Realnetworks Realnetworks Realone Player 1.0 Realnetworks Realone Player 2.0 Realnetworks Realplayer 10.0 Realnetworks Realplayer 10.5_6.0.12.1040_1069	4

References

http://service.real.com/help/faq/security/050623_player/EN/