Vulnerabilities (CVE)

Filtered by vendor Realnetworks Subscribe
Filtered by product Helix Universal Server
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-0774 1 Realnetworks 2 Helix Universal Mobile Server And Gateway, Helix Universal Server 2024-02-28 7.8 HIGH N/A
RealNetworks Helix Universal Server 9.0.2 for Linux and 9.0.3 for Windows allows remote attackers to cause a denial of service (CPU and memory exhaustion) via a POST request with a Content-Length header set to -1.
CVE-2002-1643 1 Realnetworks 1 Helix Universal Server 2024-02-28 7.5 HIGH N/A
Multiple buffer overflows in RealNetworks Helix Universal Server 9.0 (9.0.2.768) allow remote attackers to execute arbitrary code via (1) a long Transport field in a SETUP RTSP request, (2) a DESCRIBE RTSP request with a long URL argument, or (3) two simultaneous HTTP GET requests with long arguments.
CVE-2003-0725 1 Realnetworks 2 Helix Universal Server, Realserver 2024-02-28 7.5 HIGH N/A
Buffer overflow in the RTSP protocol parser for the View Source plug-in (vsrcplin.so or vsrcplin3260.dll) for RealNetworks Helix Universal Server 9 and RealSystem Server 8, 7 and RealServer G2 allows remote attackers to execute arbitrary code.
CVE-2004-0049 1 Realnetworks 2 Helix Universal Mobile Server, Helix Universal Server 2024-02-28 6.8 MEDIUM N/A
Helix Universal Server/Proxy 9 and Mobile Server 10 allow remote attackers to cause a denial of service via certain HTTP POST messages to the Administration System port.
CVE-2004-0389 1 Realnetworks 1 Helix Universal Server 2024-02-28 7.8 HIGH 7.5 HIGH
RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via malformed requests that trigger a null dereference, as demonstrated using (1) GET_PARAMETER or (2) DESCRIBE requests.