CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
98.7%
According to its banner, the remote host is running version 12.x of RealNetworks Helix Server / Helix Mobile Server. Such versions are reportedly affected by multiple issues :
By sending a specially crafted ‘RTSP’ (SET_PARAMETERS) request with ‘DataConvertBuffer’ parameter set to empty, an attacker may be able to crash the remote Helix server process. (CVE-2009-2533)
By sending a ‘SETUP’ request without including a ‘/’ character in it, a remote attacker may be able to crash the remote Helix server process. (CVE-2009-2534)
Binary data 5100.prm