RealNetworks Helix Servers DESCRIBE Request LoadTestPassword Field Remote Overflow
Critical Nessus Plugin ID 24876
The remote RTSP server suffers from a buffer overflow vulnerability.
The remote host is running Helix DNA Server or Helix Server, a media streaming server. The version of the Helix server installed on the remote host contains a heap overflow involving an invalid 'LoadTestPassword' field. An unauthenticated, remote attacker can leverage this flaw using a simple 'DESCRIBE' request to crash the affected application and possibly to execute arbitrary code subject to the privileges of the user id under which it runs, which by default on Windows is LOCAL SYSTEM.
Upgrade to Helix Server / Helix DNA Server version 11.1.3 or later.