The host is installed with RealPlayer 11.0 through 11.1 or 14.0.0 through 14.0.5 or RealPlayer SP 1.0 through 1.1.5 or RealPlayer Enterprise 2.0 through 2.1.5 and is prone to cross-zone scripting vulnerability. A flaw is present in the application which fails to properly handle local HTML files. Successful exploitation allows remote attackers to inject arbitrary web script or HTML in the Local Zon ...