RealNetworks Helix Server < 14.2 Multiple Vulnerabilities Network Vulnerability

Summary

1. RealNetworks Helix Server is prone to a remote code-execution vulnerability because of a format-string error. Successful exploits can allow the attacker to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition. 2. RealNetworks Helix Server and Helix Mobile Server are prone to a remote stack-based buffer-overflow vulnerability due to a failure to properly bounds-check user-supplied data. An attacker can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Solution

Updates are available. Please see the reference for more details.

References

http://docs.real.com/docs/security/SecurityUpdate033111HS.pdf
https://www.securityfocus.com/bid/47110

Updated on 2017-03-28

Severity

Classification

CVE CVE-2010-4235, CVE-2010-4596

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Air Multiple Vulnerabilities -01 August 12 (Mac OS X)
Adobe AIR Multiple Vulnerabilities-01 Sep14 (Windows)
Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Windows)
Adobe AIR Multiple Vulnerabilities -01 April 13 (Mac OS X)
Adobe AIR Multiple Vulnerabilities-01 Sep13 (Mac OS X)

Take action and discover your vulnerabilities