Security update for Helix Server
RealNetworks has released an update for its Helix Server and the Helix Mobile Server to fix two denial-of-service (DoS) vulnerabilities. According to Core Security, specially crafted RTSP packets can be used to crash the server. The vulnerabilities were found in version 12.0.1.215, however, other versions are also likely affected. Upgrading to version 13.0.0 of Helix Server and the Helix Mobile Server, addresses the problems.
See also:
- Real Helix DNA RTSP and SETUP request handler vulnerabilities, security advisory from Core Security.
- Details for Potential Vulnerabilities, security advisory from RealNetworks.
(crve)