RealNetworks.Helix.Server.rn5auth.Parsing.Buffer.Overflow
Description
This indicates an attack attempt to exploit a Buffer Overflow vulnerability in RealNetworks Helix Server.
The vulnerability is due to an improper bounds checking error when handling RTSP requests with a malformed "Authorization" header. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application by sending a crafted request to a vulnerable server.
Affected Products
RealNetworks Helix Mobile Server 14.x prior to 14.3
RealNetworks Helix Server 14.x prior to 14.3
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version available from the website.
http://www.realnetworks.com/helix/download-streaming-media-products/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |