Vulnerability in Realnetworks Realplayer_sp
CVE-2010-5228
Untrusted search path vulnerability in RealPlayer SP 1.1.5 12.0.0.879 allows local users to gain privileges via a Trojan horse rio500.dll file in the current working directory, as demonstrated by a directory that contains a .avi file. NOT…
EPSS: 0.001 (27.9th percentile) — read the EPSS interpretation.
Affected products
- Realnetworks Realplayer_sp — versions 1.1.5
- N/a — versions n/a
References
- 41092 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- cve@mitre.org (x_refsource_MISC)