Vulnerability Description
Stack-based buffer overflow in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and Helix Mobile Server 12.x, 13.x, and 14.x before 14.2, allows remote attackers to execute arbitrary code via a long string in an RTSP request.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Realnetworks | Helix Server | 12.0.0 |
| Realnetworks | Helix Mobile Server | 12.0 |
Related Weaknesses (CWE)
References
- http://docs.real.com/docs/security/SecurityUpdate033111HS.pdfVendor Advisory
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=899
- http://www.securityfocus.com/bid/47109
- http://docs.real.com/docs/security/SecurityUpdate033111HS.pdfVendor Advisory
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=899
- http://www.securityfocus.com/bid/47109
FAQ
What is CVE-2010-4596?
CVE-2010-4596 is a vulnerability with a CVSS score of 9.3 (HIGH). Stack-based buffer overflow in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and Helix Mobile Server 12.x, 13.x, and 14.x before 14.2, allows remote attackers to execute arbitrary code v...
How severe is CVE-2010-4596?
CVE-2010-4596 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-4596?
Check the references section above for vendor advisories and patch information. Affected products include: Realnetworks Helix Server, Realnetworks Helix Mobile Server.