In association with heise online

« previous | next »
27 August 2007, 14:14

Code injection vulnerability in Helix Server

The Helix media streaming server from RealNetworks contains a security hole, which could be exploited to execute injected malicious code by simply sending manipulated network packets.

In a security advisory, security service provider Mu Security has reported that a buffer overflow may occur in the Helix DNA Server when processing manipulated packets in the Real-Time-Streaming Protocol (RTSP). The bug is triggered by an RTSP request containing several require headers.

The vulnerability affects Helix servers prior to the current version 11.1.4, in which this vulnerability has already been patched. Helix server administrators should install the current version as soon as possible.

See also:

(ehe)

« previous | next »
Print Version | Send by email | Permalink: http://h-online.com/-733522

Also on The H:

  • Share this article
  • Twitter
  • Facebook
  • digg this
  • submit to slashdot
  • post to delicious
  • StumbleUpon
  • submit to reddit
The H Open Headlines

Price Insight Top 10 powered by Skinflint

  1. Samsung SSD 830 Series 128GB
  2. Samsung SSD 830 Series 256GB
  3. Samsung SSD 830 Series Desktop Upgrade Kit 256GB
  4. Intel Core i5-3570K
  5. Samsung Galaxy S3 i9300 16GB blau
  6. Crucial m4 SSD 128GB
  7. Gigabyte GeForce GTX 670 OC
  8. Diablo 3 (deutsch)
  9. Palit GeForce GTX 670
  10. Samsung Galaxy Nexus i9250 16GB silber

The H

The H open source

The H Security

The H Internet Toolkit