GCVE - cpe:2.3:a:realnetworks:helix_dna

Approved changes feed: RSS · Atom

cpe:2.3:a:realnetworks:helix_dna_server:11.0:*:*:*:*:*:*:*

part: a version: 11.0 update: *

Vendor	Realnetworks (`944b0662-a257-59bc-8fc3-d9f6c6d401e0`)
Product	Helix Dna Server (`8abc220c-9a0c-5f8b-86fe-8b6f01f20368`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2010-1317`	vulnerable	2026-06-03 14:30:13.978245	Details available Heap-based buffer overflow in the NTLM authentication functionality in RealNetworks Helix Server and Helix Mobile Server 11.x, 12.x, and 13.x allows remote attackers to have an unspecified impact via invalid base64-encoded data. Published: 2010-04-20T15:00:00.000Z Updated: 2024-09-17T00:20:44.109Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/39490 http://www.realnetworks.com/uploadedFiles/Support/helix-support/SecurityUpdate041410HS.pdf http://secunia.com/advisories/39279 http://www.vupen.com/english/advisories/2010/0889	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-4561`	vulnerable	2026-06-03 14:28:18.699411	Details available Heap-based buffer overflow in the RTSP service in Helix DNA Server before 11.1.4 allows remote attackers to execute arbitrary code via an RSTP command containing multiple Require headers. Published: 2007-08-28T01:00:00.000Z Updated: 2024-08-07T15:01:09.581Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/25440 http://marc.info/?l=full-disclosure&m=118800391412961&w=2 http://www.vupen.com/english/advisories/2007/2986 http://labs.musecurity.com/wp-content/uploads/2007/08/mu-200708-01.txt http://secunia.com/advisories/26609	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-6026`	vulnerable	2026-06-03 14:27:47.287827	Details available Heap-based buffer overflow in Real Networks Helix Server and Helix Mobile Server before 11.1.3, and Helix DNA Server 11.0 and 11.1, allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a DESCRIBE request that contains an invalid LoadTestPassword field. Published: 2006-11-21T23:00:00.000Z Updated: 2024-08-07T20:12:31.381Z Open on db.gcve.eu Reference links http://gleg.net/helix.txt https://www.exploit-db.com/exploits/3531 http://lists.helixcommunity.org/pipermail/server-cvs/2007-January/003783.html http://www.securityfocus.com/archive/1/463333/100/0/threaded http://web.archive.org/web/20060502082622/www.gleg.net/vulndisco_pack_professional.shtml	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-3276`	vulnerable	2026-06-03 14:27:34.531712	Details available Heap-based buffer overflow in RealNetworks Helix DNA Server 10.0 and 11.0 allows remote attackers to execute arbitrary code via (1) a long User-Agent HTTP header in the RTSP service and (2) unspecified vectors involving the "parsing of HTTP URL schemes". Published: 2006-06-28T22:00:00.000Z Updated: 2024-08-07T18:23:20.896Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/27316 http://www.securityfocus.com/bid/18606 http://securitytracker.com/id?1016365 http://www.vupen.com/english/advisories/2006/2521 http://archives.neohapsis.com/archives/fulldisclosure/2006-06/0600.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Helix Dna Server

PURL mappings

Vulnerability references

Contribute