Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

RealNetworks Helix Server 11.x / 12.x / 13.x Multiple Vulnerabilities

Critical

Synopsis

The remote media streaming server is affected by multiple vulnerabilities.

Description

According to its banner, the remote host is running version 11.x, 12.x, or 13.x of RealNetworks Helix Server / Helix Mobile Server. Such versions are potentially affected by multiple vulnerabilities.

- A heap overflow exists in the NTLM authentication code related to invalid Base64 encoding. (CVE-2010-1317)

- A stack-based buffer overflow within AgentX++ could lead to arbitrary code execution. (CVE-2010-1318)

- An integer overflow within AgentX++ could lead to arbitrary code execution. (CVE-2010-1319)

Solution

Upgrade to RealNetworks Helix Server / Helix Mobile Server 14.0.0 or later.