Vulnerabilities (CVE)

Filtered by vendor Realnetworks Subscribe
Filtered by product Helix Server Mobile
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-1319 1 Realnetworks 3 Helix Mobile Server, Helix Server, Helix Server Mobile 2024-11-21 10.0 HIGH N/A
Integer overflow in the AgentX::receive_agentx function in AgentX++ 1.4.16, as used in RealNetworks Helix Server and Helix Mobile Server 11.x through 13.x and other products, allows remote attackers to execute arbitrary code via a request with a crafted payload length.
CVE-2010-1318 1 Realnetworks 3 Helix Mobile Server, Helix Server, Helix Server Mobile 2024-11-21 10.0 HIGH N/A
Stack-based buffer overflow in the AgentX::receive_agentx function in AgentX++ 1.4.16, as used in RealNetworks Helix Server and Helix Mobile Server 11.x through 13.x and other products, allows remote attackers to execute arbitrary code via unspecified vectors.
CVE-2010-1317 1 Realnetworks 3 Helix Dna Server, Helix Server, Helix Server Mobile 2024-11-21 7.5 HIGH N/A
Heap-based buffer overflow in the NTLM authentication functionality in RealNetworks Helix Server and Helix Mobile Server 11.x, 12.x, and 13.x allows remote attackers to have an unspecified impact via invalid base64-encoded data.
CVE-2009-2534 1 Realnetworks 2 Helix Server, Helix Server Mobile 2024-11-21 5.0 MEDIUM N/A
RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allow remote attackers to cause a denial of service (daemon crash) via an RTSP SETUP request that (1) specifies the / URI or (2) lacks a / character in the URI.
CVE-2009-2533 1 Realnetworks 2 Helix Server, Helix Server Mobile 2024-11-21 5.0 MEDIUM N/A
rmserver in RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allows remote attackers to cause a denial of service (daemon exit) via multiple RTSP SET_PARAMETER requests with empty DataConvertBuffer headers.
CVE-2008-5911 1 Realnetworks 2 Helix Server, Helix Server Mobile 2024-11-21 10.0 HIGH N/A
Multiple buffer overflows in RealNetworks Helix Server and Helix Mobile Server 11.x before 11.1.8 and 12.x before 12.0.1 allow remote attackers to (1) cause a denial of service via three crafted RTSP SETUP commands, or execute arbitrary code via (2) an NTLM authentication request with malformed base64-encoded data, (3) an RTSP DESCRIBE command, or (4) a DataConvertBuffer request.