The host is installed with RealNetworks RealPlayer 11.0 through 11.1 or SP 1.0 through 1.1.5 or 14.0.0 through 14.0.1 or Enterprise 2.0 through 2.1.4 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which uses predictable names for temporary files and allows remote attackers to conduct cross-domain scripting attacks. Successful exploitation could allow attackers to execute arbitrary code.