PT-2026-35511

Name of the Vulnerable Software and Affected Versions MERCURY MIPC252W version 1.0.5 Build 230306 Rel.79931n Description An improper authentication issue exists in the RTSP service. Following a successful Digest authentication during an initial 'DESCRIBE' request, the device fails to verify the...

Buffer overflow

Buffer overflow in the ubnt-streamer RTSP service on the Ubiquiti UBNT AirCam with airVision firmware before 1.1.6 allows remote attackers to execute arbitrary code via a long rtsp: URI in a DESCRIBE request...

rtsp-url-brute NSE Script

Attempts to enumerate RTSP media URLS by testing for common paths on devices such as surveillance IP cameras. The script attempts to discover valid RTSP URLs by sending a DESCRIBE request for each URL in the dictionary. It then parses the response, based on which it determines whether the URL is...

RealNetworks Helix Server DESCRIBE Request Buffer Overflow (CVE-2006-6026)

Helix Server is a multi-media server that is designed to serve streaming and static audio and video content. Helix project, Helix Server being part of it, is intended as a largely free software/open source digital media framework that runs on numerous operating systems and processors including...

Helix Server heap overflow

Name: Helix Server heap overflow Vendor: http://www.realnetworks.com Release date: 20 March, 2007 Author: Evgeny Legerov [email protected] Advisory URL: http://gleg.net/helix.txt I. DESCRIPTION A remote heap overflow vulnerability has been found in Helix Server. The vulnerability could allow a...

RealNetworks Helix Servers DESCRIBE Request LoadTestPassword Field Remote Overflow

The remote host is running Helix DNA Server or Helix Server, a media streaming server. The version of the Helix server installed on the remote host contains a heap overflow involving an invalid 'LoadTestPassword' field. An unauthenticated, remote attacker can leverage this flaw using a simple...