Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-0273
HistoryNov 23, 2004 - 5:00 a.m.

CVE-2004-0273

2004-11-2305:00:00
CWE-22
[email protected]
web.nvd.nist.gov
25
cve-2004-0273
directory traversal
realone player
rmp file
security vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.6%

JSON

Directory traversal vulnerability in RealOne Player, RealOne Player 2.0, and RealOne Enterprise Desktop allows remote attackers to upload arbitrary files via an RMP file that contains … (dot dot) sequences in a .rjs skin file.

Affected configurations

NVD
Node
realnetworksrealone_desktop_manager
OR
realnetworksrealone_enterprise_desktopMatch6.0.11.774
OR
realnetworksrealone_playerMatch1.0
OR
realnetworksrealone_playerMatch2.0
OR
realnetworksrealone_playerMatch2.0win
OR
realnetworksrealone_playerMatch6.0.11.818
OR
realnetworksrealone_playerMatch6.0.11.830
OR
realnetworksrealone_playerMatch6.0.11.841
OR
realnetworksrealone_playerMatch6.0.11.853
OR
realnetworksrealone_playerMatch6.0.11.868

Related

nvd 1
cvelist 1
nessus 1
nvd
nvd
CVE-2004-0273
2004-11-23 05:00:00
cvelist
cvelist
CVE-2004-0273
2004-09-01 04:00:00
nessus
nessus
RealPlayer File Handler Arbitrary Code Execution
2004-02-05 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.6%

JSON
Related for CVE-2004-0273
nvd1cvelist1nessus1