CVE-2009-2533
Published Jul 20, 2009
Last updated 6 years ago
Overview
- Description
- rmserver in RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allows remote attackers to cause a denial of service (daemon exit) via multiple RTSP SET_PARAMETER requests with empty DataConvertBuffer headers.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-20
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:a:realnetworks:helix_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78A24161-758C-4F18-B3D7-9D7E652612EC", "versionEndIncluding": "12.0.1" }, { "criteria": "cpe:2.3:a:realnetworks:helix_server:12.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0890EDD4-63FF-43EC-9EC4-852B34E00F51" }, { "criteria": "cpe:2.3:a:realnetworks:helix_server_mobile:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "564CD3CE-1094-4F7E-8598-1B4B35AF0AF3", "versionEndIncluding": "12.0.0" }, { "criteria": "cpe:2.3:a:realnetworks:helix_server_mobile:11.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74F01F2C-036C-4B6E-B66D-F0870801D397" } ], "operator": "OR" } ] } ]