CVE-2005-0348

Published: May 2, 2005Modified: Apr 16, 2026

2.6

Vector

AV:N/AC:H/Au:N/C:N/I:P/A:N

Exploitability: 4.9 / Impact: 2.9

Source: NVD

Description

Directory traversal vulnerability in RealArcade 1.2.0.994 allows remote attackers to delete arbitrary files via an RGP file with a .. (dot dot) in the FILENAME tag.

Affected (1)

Products: Realnetworks: Realarcade

Realnetworks

1 product

Realarcade

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Realnetworks Realarcade	Up to 1.2.0.994

References (10)

http://marc.info/?l=bugtraq&m=110792779115794&w=2

Source: cve@mitre.org

http://secunia.com/advisories/14187/

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1013128

Source: cve@mitre.org

http://www.securityfocus.com/bid/12494

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/19260

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=110792779115794&w=2