52 matches found
EUVD-2012-1994
Malware in sbrugna...
CVE-2012-2268
master.exe in the SNMP Master Agent in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to cause a denial of service unhandled exception and daemon crash via a crafted Open-PDU request that triggers incorrect DisplayString processing, a different...
CVE-2012-1984
Multiple cross-site scripting XSS vulnerabilities in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-1923
RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x store passwords in cleartext under admbdb\users, which allows local users to obtain sensitive information by reading a database...
Code injection
master.exe in the SNMP Master Agent in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to cause a denial of service daemon crash by establishing and closing a port-705 TCP connection, a different vulnerability than CVE-2012-1923...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to hijack the authentication of administrators for requests that cause a denial of service stack consumption and daemon crash via a malformed URL...
Design/Logic Flaw
master.exe in the SNMP Master Agent in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to cause a denial of service unhandled exception and daemon crash via a crafted Open-PDU request that triggers incorrect DisplayString processing, a different...
Design/Logic Flaw
RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x store passwords in cleartext under admbdb\users, which allows local users to obtain sensitive information by reading a database...
Buffer overflow
Buffer overflow in rn5auth.dll in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to execute arbitrary code via crafted authentication credentials...
CVE-2012-1984
RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x are affected by multiple remote vulnerabilities, including CVE-2012-1984 (XSS through unspecified vectors) due to parsing/page requests. Upgrading to 14.3.x or applying the vendor Security Update (04/02/20112 HS) is the recommen...
CVE-2012-1985
RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x are affected by CSRF (CVE-2012-1985). Exploitation can hijack an administrator’s session via a malformed URL, potentially causing a stack consumption issue and daemon crash (DoS). The issue is documented across multiple feeds (N...
CVE-2012-2267
master.exe in the SNMP Master Agent in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to cause a denial of service daemon crash by establishing and closing a port-705 TCP connection, a different vulnerability than CVE-2012-1923...
CVE-2012-1985
Cross-site request forgery CSRF vulnerability in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to hijack the authentication of administrators for requests that cause a denial of service stack consumption and daemon crash via a malformed URL...
CVE-2012-2268
CVE-2012-2268 affects RealNetworks Helix Server and Helix Mobile Server 14.x prior to 14.3.x. The vulnerability exists in the SNMP Master Agent’s handling of Open-PDU requests and improper DisplayString processing, which can be triggered remotely to cause a denial of service (unhandled exception ...
CVE-2012-2267
RealNetworks Helix Server and Helix Mobile Server 14.x (SNMP Master Agent) are affected by CVE-2012-2267, a denial-of-service vulnerability where a remote attacker can crash the daemon by opening and closing a TCP connection to port 705. This is described as a DoS caused by the SNMP Master Agent ...
CVE-2012-1923
CVE-2012-1923 affects RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x. The issue is caused by storing credentials in cleartext in the flat-file database under adm_b_db\users, enabling local users to read sensitive passwords. Impact is disclosure of credentials with partial co...
CVE-2012-2268
master.exe in the SNMP Master Agent in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to cause a denial of service unhandled exception and daemon crash via a crafted Open-PDU request that triggers incorrect DisplayString processing, a different...
CVE-2012-1984
Multiple cross-site scripting XSS vulnerabilities in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-1923
RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x store passwords in cleartext under admbdb\users, which allows local users to obtain sensitive information by reading a database...