RealNetworks Helix Servers DESCRIBE Request LoadTestPassword Field Remote Overflow

Critical Nessus Plugin ID 24876


The remote RTSP server suffers from a buffer overflow vulnerability.


The remote host is running Helix DNA Server or Helix Server, a media streaming server.

The version of the Helix server installed on the remote host contains a heap overflow involving an invalid 'LoadTestPassword' field. An unauthenticated, remote attacker can leverage this flaw using a simple 'DESCRIBE' request to crash the affected application and possibly to execute arbitrary code subject to the privileges of the user id under which it runs, which by default on Windows is LOCAL SYSTEM.


Upgrade to Helix Server / Helix DNA Server version 11.1.3 or later.

See Also

Plugin Details

Severity: Critical

ID: 24876

File Name: helix_loadtestpassword_overflow.nasl

Version: $Revision: 1.16 $

Type: remote

Published: 2007/03/23

Modified: 2013/06/03

Dependencies: 11153

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 9

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:U/RC:ND

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2006/05/02

Reference Information

CVE: CVE-2006-6026

BID: 21141, 23068

OSVDB: 30466