CVE-2002-0415 Information

Description

Directory traversal vulnerability in the web server used in RealPlayer 6.0.7 and possibly other versions may allow local users to read files that are accessible to RealPlayer via a .. (dot dot) in an HTTP GET request to port 1275.

Reference

http://www.iss.net/security_center/static/8336.php http://www.securityfocus.com/archive/1/259333 http://www.securityfocus.com/bid/4221