RealNetworks Helix Server 'x-wap-profile' Header Remote Code Execution Vulnerability

Bugtraq ID: 47110
Class: Boundary Condition Error
CVE: CVE-2010-4235
Remote: Yes
Local: No
Published: Mar 31 2011 12:00AM
Updated: Apr 01 2011 08:35PM
Credit: Defrost working with Tippingpoint‚??s Zero Day Initiative and iDefense.
Vulnerable: Real Networks Helix Server 13.0
Real Networks Helix Server 12.0.1 .215
Real Networks Helix Server 12.0.1
Real Networks Helix Server 12.0
Real Networks Helix Server 14.0
Real Networks Helix Mobile Server 13.0
Real Networks Helix Mobile Server 12.0.1 .215
Real Networks Helix Mobile Server 12.0.1
Real Networks Helix Mobile Server 12.0
Real Networks Helix Mobile Server 14.0
Not Vulnerable: Real Networks Helix Server 14.2
Real Networks Helix Mobile Server 14.2


 

Privacy Statement
Copyright 2010, SecurityFocus