← Back

CVE-2003-0726

nvd nist
Published: Oct 20, 2003Modified: Apr 16, 2026

JSON object

Loading...
5.1
Vector
AV:N/AC:H/Au:N/C:P/I:P/A:P
Exploitability: 4.9 / Impact: 6.4
Source: NVD

Description

RealOne player allows remote attackers to execute arbitrary script in the "My Computer" zone via a SMIL presentation with a URL that references a scripting protocol, which is executed in the security context of the previously loaded URL, as demonstrated using a "javascript:" URL in the area tag.

Affected (8)

Realnetworks
3 products
Realone Desktop Manager
Realone Enterprise Desktop
Realone Player
Configuration A
8 vulnerable
Vulnerable SoftwareAffected Versions
Realone Desktop Manager
All versions
Realone Enterprise Desktop
Version 6.0.11.774
Realnetworks
Realone Player
Version 2.0
Realone Player
Version 6.0.10.505 gold
Realone Player
Version 6.0.11.818
Realone Player
Version 6.0.11.830
Realone Player
Version 6.0.11.841
Realone Player
Version 6.0.11.853

References (12)

Source: cve@mitre.org
Source: cve@mitre.org
ExploitPatchVendor AdvisoryURL Repurposed
Source: cve@mitre.org
ExploitVendor Advisory
Source: cve@mitre.org
ExploitPatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatchVendor AdvisoryURL Repurposed
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.