CVE-2005-0190

Name of the Vulnerable Software and Affected Versions RealPlayer versions 10.5 (6.0.12.1040) and earlier

Description A directory traversal issue allows remote attackers to delete arbitrary files via a Real Metadata Packages (RMP) file. This is achieved by including a FILENAME tag with .. (dot dot) sequences in a filename that ends with a ? (question mark) and an allowed file extension, such as .mp3, which bypasses the file extension check.

Recommendations For RealPlayer versions 10.5 (6.0.12.1040) and earlier, consider restricting the handling of RMP files with suspicious FILENAME tags to minimize the risk of exploitation. Avoid using the FILENAME tag with .. sequences in filenames until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.