The host is installed with RealPlayer 20.0.7.309 or 20.0.8.310 and is prone to a path traversal vulnerability. A flaw is present in the application, which fail to properly handle issues in the external::Import(). Successful exploitation allows attackers to cause remote code execution.