Realnetworks » Helix Server Mobile : Security Vulnerabilities, CVEs, Published In 2009 (Denial of service)
RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allow remote attackers to cause a denial of service (daemon crash) via an RTSP SETUP request that (1) specifies the / URI or (2) lacks a / character in the URI.
Max CVSS
5.0
EPSS Score
88.19%
Published
2009-07-20
Updated
2018-10-10
rmserver in RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allows remote attackers to cause a denial of service (daemon exit) via multiple RTSP SET_PARAMETER requests with empty DataConvertBuffer headers.
Max CVSS
5.0
EPSS Score
88.19%
Published
2009-07-20
Updated
2018-10-10
Multiple buffer overflows in RealNetworks Helix Server and Helix Mobile Server 11.x before 11.1.8 and 12.x before 12.0.1 allow remote attackers to (1) cause a denial of service via three crafted RTSP SETUP commands, or execute arbitrary code via (2) an NTLM authentication request with malformed base64-encoded data, (3) an RTSP DESCRIBE command, or (4) a DataConvertBuffer request.
Max CVSS
10.0
EPSS Score
61.53%
Published
2009-01-20
Updated
2011-03-08
3 vulnerabilities found