Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4561

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-4561
Last Modified 07 Mar 2011 09:58:47
Published 27 Aug 2007 09:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4561

Summary

Heap-based buffer overflow in the RTSP service in Helix DNA Server before 11.1.4 allows remote attackers to execute arbitrary code via an RSTP command containing multiple Require headers.

Vulnerable Systems

Application

  • Realnetworks Helix Dna Server 10.0

  • Realnetworks Helix Dna Server 11.0

  • Realnetworks Helix Dna Server 11.1

  • Realnetworks Helix Dna Server 11.1.2

  • Realnetworks Helix Dna Server 11.1.3


References

BID - 25440

VUPEN - ADV-2007-2986

SECTRACK - 1018605

FULLDISC - 20070824 [MU-200708-01] Helix DNA Server Heap Corruption

MISC - http://labs.musecurity.com/wp-content/uploads/2007/08/mu-200708-01.txt

SREASON - 3069

SECUNIA - 26609


Last Updated: 27 May 2016 10:45:54