CVE-2010-4596

2011-04-0412:27:36

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.079

Percentile

94.4%

JSON

Stack-based buffer overflow in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and Helix Mobile Server 12.x, 13.x, and 14.x before 14.2, allows remote attackers to execute arbitrary code via a long string in an RTSP request.

Affected configurations

Nvd

Node

realnetworkshelix_serverMatch12.0.0

realnetworkshelix_serverMatch12.0.1

realnetworkshelix_serverMatch13.0.0

realnetworkshelix_serverMatch13.1.1

realnetworkshelix_serverMatch14.0.0

realnetworkshelix_serverMatch14.0.1

Node

realnetworkshelix_mobile_serverMatch12.0

realnetworkshelix_mobile_serverMatch13.1.1

realnetworkshelix_mobile_serverMatch14.0.0

realnetworkshelix_mobile_serverMatch14.0.1

VendorProductVersionCPE
realnetworkshelix_server12.0.0cpe:2.3:a:realnetworks:helix_server:12.0.0:*:*:*:*:*:*:*
realnetworkshelix_server12.0.1cpe:2.3:a:realnetworks:helix_server:12.0.1:*:*:*:*:*:*:*
realnetworkshelix_server13.0.0cpe:2.3:a:realnetworks:helix_server:13.0.0:*:*:*:*:*:*:*
realnetworkshelix_server13.1.1cpe:2.3:a:realnetworks:helix_server:13.1.1:*:*:*:*:*:*:*
realnetworkshelix_server14.0.0cpe:2.3:a:realnetworks:helix_server:14.0.0:*:*:*:*:*:*:*
realnetworkshelix_server14.0.1cpe:2.3:a:realnetworks:helix_server:14.0.1:*:*:*:*:*:*:*
realnetworkshelix_mobile_server12.0cpe:2.3:a:realnetworks:helix_mobile_server:12.0:*:*:*:*:*:*:*
realnetworkshelix_mobile_server13.1.1cpe:2.3:a:realnetworks:helix_mobile_server:13.1.1:*:*:*:*:*:*:*
realnetworkshelix_mobile_server14.0.0cpe:2.3:a:realnetworks:helix_mobile_server:14.0.0:*:*:*:*:*:*:*
realnetworkshelix_mobile_server14.0.1cpe:2.3:a:realnetworks:helix_mobile_server:14.0.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
realnetworks	helix_server	12.0.0	cpe:2.3:a:realnetworks:helix_server:12.0.0:::::::*
realnetworks	helix_server	12.0.1	cpe:2.3:a:realnetworks:helix_server:12.0.1:::::::*
realnetworks	helix_server	13.0.0	cpe:2.3:a:realnetworks:helix_server:13.0.0:::::::*
realnetworks	helix_server	13.1.1	cpe:2.3:a:realnetworks:helix_server:13.1.1:::::::*
realnetworks	helix_server	14.0.0	cpe:2.3:a:realnetworks:helix_server:14.0.0:::::::*
realnetworks	helix_server	14.0.1	cpe:2.3:a:realnetworks:helix_server:14.0.1:::::::*
realnetworks	helix_mobile_server	12.0	cpe:2.3:a:realnetworks:helix_mobile_server:12.0:::::::*
realnetworks	helix_mobile_server	13.1.1	cpe:2.3:a:realnetworks:helix_mobile_server:13.1.1:::::::*
realnetworks	helix_mobile_server	14.0.0	cpe:2.3:a:realnetworks:helix_mobile_server:14.0.0:::::::*
realnetworks	helix_mobile_server	14.0.1	cpe:2.3:a:realnetworks:helix_mobile_server:14.0.1:::::::*