Vulnerability Description
Heap-based buffer overflow in the NTLM authentication functionality in RealNetworks Helix Server and Helix Mobile Server 11.x, 12.x, and 13.x allows remote attackers to have an unspecified impact via invalid base64-encoded data.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Realnetworks | Helix Dna Server | 11.0 |
| Realnetworks | Helix Server | 11.0 |
| Realnetworks | Helix Server Mobile | 11.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/39279Vendor Advisory
- http://www.realnetworks.com/uploadedFiles/Support/helix-support/SecurityUpdate04Vendor Advisory
- http://www.securityfocus.com/bid/39490
- http://www.vupen.com/english/advisories/2010/0889Vendor Advisory
- http://secunia.com/advisories/39279Vendor Advisory
- http://www.realnetworks.com/uploadedFiles/Support/helix-support/SecurityUpdate04Vendor Advisory
- http://www.securityfocus.com/bid/39490
- http://www.vupen.com/english/advisories/2010/0889Vendor Advisory
FAQ
What is CVE-2010-1317?
CVE-2010-1317 is a vulnerability with a CVSS score of 7.5 (HIGH). Heap-based buffer overflow in the NTLM authentication functionality in RealNetworks Helix Server and Helix Mobile Server 11.x, 12.x, and 13.x allows remote attackers to have an unspecified impact via ...
How severe is CVE-2010-1317?
CVE-2010-1317 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-1317?
Check the references section above for vendor advisories and patch information. Affected products include: Realnetworks Helix Dna Server, Realnetworks Helix Server, Realnetworks Helix Server Mobile.