Описание
Heap-based buffer overflow in RealNetworks Helix DNA Server 10.0 and 11.0 allows remote attackers to execute arbitrary code via (1) a long User-Agent HTTP header in the RTSP service and (2) unspecified vectors involving the "parsing of HTTP URL schemes".
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:realnetworks:helix_dna_server:10.0:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:helix_dna_server:11.0:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.08786
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Heap-based buffer overflow in RealNetworks Helix DNA Server 10.0 and 11.0 allows remote attackers to execute arbitrary code via (1) a long User-Agent HTTP header in the RTSP service and (2) unspecified vectors involving the "parsing of HTTP URL schemes".
EPSS
Процентиль: 92%
0.08786
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other