Realnetworks » Helix Universal Server : Security Vulnerabilities, CVEs,
RealNetworks Helix Universal Server 9.0.2 for Linux and 9.0.3 for Windows allows remote attackers to cause a denial of service (CPU and memory exhaustion) via a POST request with a Content-Length header set to -1.
Max CVSS
7.8
EPSS Score
0.33%
Published
2004-11-03
Updated
2017-07-11
RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via malformed requests that trigger a null dereference, as demonstrated using (1) GET_PARAMETER or (2) DESCRIBE requests.
Max CVSS
7.8
EPSS Score
2.56%
Published
2004-06-01
Updated
2024-02-15
Helix Universal Server/Proxy 9 and Mobile Server 10 allow remote attackers to cause a denial of service via certain HTTP POST messages to the Administration System port.
Max CVSS
6.8
EPSS Score
0.50%
Published
2004-02-17
Updated
2008-09-05
Buffer overflow in the RTSP protocol parser for the View Source plug-in (vsrcplin.so or vsrcplin3260.dll) for RealNetworks Helix Universal Server 9 and RealSystem Server 8, 7 and RealServer G2 allows remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
89.06%
Published
2003-10-20
Updated
2008-09-05
CVE-2002-1643
Public exploit
Multiple buffer overflows in RealNetworks Helix Universal Server 9.0 (9.0.2.768) allow remote attackers to execute arbitrary code via (1) a long Transport field in a SETUP RTSP request, (2) a DESCRIBE RTSP request with a long URL argument, or (3) two simultaneous HTTP GET requests with long arguments.
Max CVSS
7.5
EPSS Score
94.55%
Published
2002-12-19
Updated
2017-12-23
5 vulnerabilities found