RealNetworks Helix Server Multiple Remote Vulnerabilities Network Vulnerability

Summary

RealNetworks Helix Server is prone to multiple remote vulnerabilities. Attackers can exploit theses issues to execute arbitrary code within the context of the affected application, cause denial-of service conditions, retrieve potentially sensitive information, execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, and steal cookie-based authentication credentials. RealNetworks Helix Server 14.2.0.212 is vulnerable other versions may also be affected.

Solution

Updates are available. Please see the references for more information.

References

http://helixproducts.real.com/docs/security/SecurityUpdate04022012HS.pdf
http://secunia.com/secunia_research/2012-8/
http://secunia.com/secunia_research/2012-9/
http://www.securityfocus.com/bid/52929

Updated on 2017-03-28

Severity

Classification

CVE CVE-2012-0942, CVE-2012-1923, CVE-2012-1984, CVE-2012-1985, CVE-2012-2267, CVE-2012-2268

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Aastra IP Telephone Hardcoded Telnet Password Security Bypass Vulnerability
Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Windows)
Adobe Acrobat Multiple Vulnerabilities April-2012 (Mac OS X)
Adobe Air Multiple Vulnerabilities -01 August 12 (Mac OS X)
Adobe Acrobat Remote Code Execution Vulnerability(Win)

Take action and discover your vulnerabilities