Realnetworks : Security Vulnerabilities, CVEs, Published In 2006 (Code Execution)
Heap-based buffer overflow in Real Networks Helix Server and Helix Mobile Server before 11.1.3, and Helix DNA Server 11.0 and 11.1, allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a DESCRIBE request that contains an invalid LoadTestPassword field.
Max CVSS
10.0
EPSS Score
90.86%
Published
2006-11-21
Updated
2018-10-17
Buffer overflow in swfformat.dll in multiple RealNetworks products and versions including RealPlayer 10.x, RealOne Player, Rhapsody 3, and Helix Player allows remote attackers to execute arbitrary code via a crafted SWF (Flash) file with (1) a size value that is less than the actual size, or (2) other unspecified manipulations.
Max CVSS
9.3
EPSS Score
96.78%
Published
2006-03-23
Updated
2018-10-19
Heap-based buffer overflow in RealNetworks Helix DNA Server 10.0 and 11.0 allows remote attackers to execute arbitrary code via (1) a long User-Agent HTTP header in the RTSP service and (2) unspecified vectors involving the "parsing of HTTP URL schemes".
Max CVSS
7.5
EPSS Score
23.44%
Published
2006-06-28
Updated
2017-07-20
3 vulnerabilities found