N/A

Multiple buffer overflows in RealNetworks Helix Server and Helix Mobile Server 11.x before 11.1.8 and 12.x before 12.0.1 allow remote attackers to (1) cause a denial of service via three crafted RTSP SETUP commands, or execute arbitrary code via (2) an NTLM authentication request with malformed base64-encoded data, (3) an RTSP DESCRIBE command, or (4) a DataConvertBuffer request.

N/A

N/A

RealNetworks Helix Server和Helix Mobile Server 多个缓冲区溢出漏洞

RealNetworks Helix Server和Helix Mobile Server 11.1.8之前的11.x和12.0.1之前的12.x版本中存在缓冲区溢出漏洞。远程攻击者可以借助特制的RTSP SETUP指令，引起拒绝服务攻击；借助三个特制的RTSP SETUP指令或(2)带有畸形的base64-编码的数据的NTLM身份认证请求，(3)一个RTSP DESCRIBE指令或(4)一个DataConvertBuffer请求，执行任意的代码。

N/A

N/A