Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-zone scripting vulnerability in the RealPlayer ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to inject arbitrary web script or HTML in the Local Zone via a local HTML document.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RealNetworks RealPlayer跨域脚本执行漏洞
Vulnerability Description
RealNetworks RealNetworks RealPlayer是美国RealNetworks公司开发的一套媒体播放器产品。该产品提供下载/转换视频(在网页中)、编辑视频、管理媒体文件等功能。 RealNetworks RealPlayer中存在跨域脚本执行漏洞。由于用户在没有任何警告的情况下运行带有有效脚本的本地HTML文件,RealPlayer ActiveX控件可通过从web浏览器脚本加载本地HTML文件,远程攻击者可利用该漏洞执行当前用户上下文下的任意代码。
CVSS Information
N/A
Vulnerability Type
N/A