CVE-2005-0190

Severity

26%

Complexity

49%

Confidentiality

48%

Directory traversal vulnerability in RealPlayer 10.5 (6.0.12.1040) and earlier allows remote attackers to delete arbitrary files via a Real Metadata Packages (RMP) file with a FILENAME tag containing .. (dot dot) sequences in a filename that ends with a ? (question mark) and an allowed file extension (e.g. .mp3), which bypasses the check for the file extension.

Directory traversal vulnerability in RealPlayer 10.5 (6.0.12.1040) and earlier allows remote attackers to delete arbitrary files via a Real Metadata Packages (RMP) file with a FILENAME tag containing .. (dot dot) sequences in a filename that ends with a ? (question mark) and an allowed file extension (e.g. .mp3), which bypasses the check for the file extension.

CVSS 2.0 Base Score 2.6. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:N/I:P/A:N).

Overview

First reported 20 years ago

2004-09-29 04:00:00

Last updated 7 years ago

2017-11-16 18:30:00

Affected Software

RealNetworks RealPlayer 10.5

10.5

References

20041006 Patch available for multiple high risk vulnerabilities in RealPlayer

Third Party Advisory

20050119 RealPlayer Arbitrary File Deletion Vulnerability (#NISR19012005f)

Third Party Advisory

12672

Patch, Vendor Advisory

http://service.real.com/help/faq/security/040928_player/EN/

Patch, Vendor Advisory

http://www.ngssoftware.com/advisories/real-02full.txt

Patch, Vendor Advisory

11308

Patch, Third Party Advisory, VDB Entry, Vendor Advisory

realplayer-media-file-deletion(17551)

Third Party Advisory, VDB Entry

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.