Phase:RealOne player allows remote attackers to execute arbitrary script in the "My Computer" zone via a SMIL presentation with a URL that references a scripting protocol, which is executed in the security context of the previously loaded URL, as demonstrated using a "javascript:" URL in the area tag.
ReferencesBUGTRAQ:Wednesday, August 27, 2003 RealOne Player Allows Cross Zone and Domain Access | URL:http://www.securityfocus.com/archive/1/335293 | MISC:http://www.digitalpranksters.com/advisories/realnetworks/smilscriptprotocol.html | CONFIRM:http://www.service.real.c
Votes:Assigned (Tuesday, September 02, 2003)
Comments:None (candidate not yet proposed)
F7: