RealNetworks Helix DNA Server RTSP DESCRIBE Heap Overflow Vulnerability

2008-12-16T00:00:00
ID ZDI-08-089
Type zdi
Reporter Anonymous
Modified 2008-11-09T00:00:00

Description

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of RealNetworks Helix Server. User interaction is not required to exploit this vulnerability. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the rmserver.exe process while processing the Proxy-Require header of an RTSP response. The service fails to check the length of the field leading to an exploitable heap based buffer overflow. Exploitation of this vulnerability allows an attacker to execute arbitrary code under the context of the SYSTEM user.