Lucene search

PRIOn knowledge basePRION:CVE-2007-4561

HistoryAug 28, 2007 - 1:17 a.m.

Heap overflow

2007-08-2801:17:00

PRIOn knowledge base

www.prio-n.com

8.5 High

AI Score

Confidence

High

0.429 Medium

EPSS

Percentile

97.4%

JSON

Heap-based buffer overflow in the RTSP service in Helix DNA Server before 11.1.4 allows remote attackers to execute arbitrary code via an RSTP command containing multiple Require headers.

CPENameOperatorVersion
helix_dna_servereq11.1.2
helix_dna_servereq11.1
helix_dna_servereq10.0
helix_dna_servereq11.1.3
helix_dna_servereq11.0

Name	Operator	Version
helix_dna_server	eq	11.1.2
helix_dna_server	eq	11.1
helix_dna_server	eq	10.0
helix_dna_server	eq	11.1.3
helix_dna_server	eq	11.0

References

labs.musecurity.com/wp-content/uploads/2007/08/mu-200708-01.txt

secunia.com/advisories/26609

securityreason.com/securityalert/3069

www.securityfocus.com/bid/25440

www.securitytracker.com/id?1018605

www.vupen.com/english/advisories/2007/2986

marc.info/?l=full-disclosure&m=118800391412961&w=2