Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-1317
HistoryOct 03, 2022 - 4:20 p.m.

CVE-2010-1317

2022-10-0316:20:59
CWE-119
[email protected]
web.nvd.nist.gov
32
cve-2010-1317
buffer overflow
realnetworks
helix server
helix mobile server
nvd
ntlm authentication
remote attackers
base64-encoded data

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.659 Medium

EPSS

Percentile

97.9%

JSON

Heap-based buffer overflow in the NTLM authentication functionality in RealNetworks Helix Server and Helix Mobile Server 11.x, 12.x, and 13.x allows remote attackers to have an unspecified impact via invalid base64-encoded data.

Affected configurations

NVD
Node
realnetworkshelix_dna_serverMatch11.0
OR
realnetworkshelix_dna_serverMatch11.1
OR
realnetworkshelix_dna_serverMatch11.1.2
OR
realnetworkshelix_dna_serverMatch11.1.3
OR
realnetworkshelix_dna_serverMatch12.0
OR
realnetworkshelix_dna_serverMatch13.0
OR
realnetworkshelix_serverMatch11.0
OR
realnetworkshelix_serverMatch11.1
OR
realnetworkshelix_serverMatch12.0.0
OR
realnetworkshelix_serverMatch13.0.0
OR
realnetworkshelix_server_mobileMatch11.0
OR
realnetworkshelix_server_mobileMatch12.0.0
OR
realnetworkshelix_server_mobileMatch13.0.0

Related

checkpoint_advisories 1
prion 1
nvd 1
securityvulns 4
zdi 1
cvelist 1
nessus 2
openvas 2
checkpoint_advisories
checkpoint_advisories
RealNetworks Helix Server NTLM Authentication Heap Overflow (CVE-2010-1317)
2010-06-06 00:00:00
prion
prion
Heap overflow
2010-04-20 15:30:00
nvd
nvd
CVE-2010-1317
2010-04-20 15:30:00
securityvulns
securityvulns
ZDI-10-079: Realnetworks Helix Server NTLM Authentication Invalid Base64 Remote Code Execution Vulnerability
2010-04-29 00:00:00
RealNetworks Helix Server buffer overflow
2010-04-29 00:00:00
ZDI-10-079: Realnetworks Helix Server NTLM Authentication Invalid Base64 Remote Code Execution Vulnerability
2010-04-29 00:00:00
zdi
zdi
Realnetworks Helix Server NTLM Authentication Invalid Base64 Remote Code Execution Vulnerability
2010-04-28 00:00:00
cvelist
cvelist
CVE-2010-1317
2022-10-03 16:20:59
nessus
nessus
RealNetworks Helix Server 11.x / 12.x / 13.x Multiple Vulnerabilities
2010-04-15 00:00:00
RealNetworks Helix Server 11.x / 12.x / 13.x Multiple Vulnerabilities
2010-04-15 00:00:00
openvas
openvas
RealNetworks Helix and Helix Mobile Server Multiple RCE Vulnerabilities
2010-04-15 00:00:00
RealNetworks Helix and Helix Mobile Server Multiple Remote Code Execution Vulnerabilities
2010-04-15 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.659 Medium

EPSS

Percentile

97.9%

JSON
Related for CVE-2010-1317
checkpoint_advisories1prion1nvd1securityvulns4zdi1cvelist1nessus2openvas2