CVE-2010-1317

critical

Description

Heap-based buffer overflow in the NTLM authentication functionality in RealNetworks Helix Server and Helix Mobile Server 11.x, 12.x, and 13.x allows remote attackers to have an unspecified impact via invalid base64-encoded data.

References

http://www.vupen.com/english/advisories/2010/0889

http://www.securityfocus.com/bid/39490

http://www.realnetworks.com/uploadedFiles/Support/helix-support/SecurityUpdate041410HS.pdf

http://secunia.com/advisories/39279

Details

Source: Mitre, NVD

Published: 2010-04-20

Updated: 2010-04-21

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

Detections

Analytics