GCVE - cpe:2.3:a:realnetworks:helix_server:12.0.0:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:realnetworks:helix_server:12.0.0:*:*:*:*:*:*:*

part: a version: 12.0.0 update: *

Vendor	Realnetworks (`944b0662-a257-59bc-8fc3-d9f6c6d401e0`)
Product	Helix Server (`89bfac61-724d-526e-8a2a-e6e5e5f65298`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2010-4596`	vulnerable	2026-06-03 14:30:42.805658	Details available Stack-based buffer overflow in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and Helix Mobile Server 12.x, 13.x, and 14.x before 14.2, allows remote attackers to execute arbitrary code via a long string in an RTSP request. Published: 2011-04-01T21:00:00.000Z Updated: 2024-09-17T00:21:51.296Z Open on db.gcve.eu Reference links http://docs.real.com/docs/security/SecurityUpdate033111HS.pdf http://www.securityfocus.com/bid/47109 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=899	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-4235`	vulnerable	2026-06-03 14:30:35.737770	Details available Format string vulnerability in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and Helix Mobile Server 12.x, 13.x, and 14.x before 14.2, allows remote attackers to execute arbitrary code via vectors related to the x-wap-profile HTTP header. Published: 2011-04-01T21:00:00.000Z Updated: 2024-09-16T19:01:07.405Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/47110 http://docs.real.com/docs/security/SecurityUpdate033111HS.pdf	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-1319`	vulnerable	2026-06-03 14:30:13.990080	Details available Integer overflow in the AgentX::receive_agentx function in AgentX++ 1.4.16, as used in RealNetworks Helix Server and Helix Mobile Server 11.x through 13.x and other products, allows remote attackers to execute arbitrary code via a request with a crafted payload length. Published: 2010-04-20T15:00:00.000Z Updated: 2024-09-16T19:35:45.217Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/39490 http://www.realnetworks.com/uploadedFiles/Support/helix-support/SecurityUpdate041410HS.pdf http://secunia.com/advisories/39279 http://www.vupen.com/english/advisories/2010/0889	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-1318`	vulnerable	2026-06-03 14:30:13.988278	Details available Stack-based buffer overflow in the AgentX::receive_agentx function in AgentX++ 1.4.16, as used in RealNetworks Helix Server and Helix Mobile Server 11.x through 13.x and other products, allows remote attackers to execute arbitrary code via unspecified vectors. Published: 2010-04-20T15:00:00.000Z Updated: 2024-09-17T03:33:06.164Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/39490 http://www.realnetworks.com/uploadedFiles/Support/helix-support/SecurityUpdate041410HS.pdf http://secunia.com/advisories/39279 http://www.vupen.com/english/advisories/2010/0889	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-1317`	vulnerable	2026-06-03 14:30:13.983470	Details available Heap-based buffer overflow in the NTLM authentication functionality in RealNetworks Helix Server and Helix Mobile Server 11.x, 12.x, and 13.x allows remote attackers to have an unspecified impact via invalid base64-encoded data. Published: 2010-04-20T15:00:00.000Z Updated: 2024-09-17T00:20:44.109Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/39490 http://www.realnetworks.com/uploadedFiles/Support/helix-support/SecurityUpdate041410HS.pdf http://secunia.com/advisories/39279 http://www.vupen.com/english/advisories/2010/0889	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-2534`	vulnerable	2026-06-03 14:29:41.732873	Details available RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allow remote attackers to cause a denial of service (daemon crash) via an RTSP SETUP request that (1) specifies the / URI or (2) lacks a / character in the URI. Published: 2009-07-20T17:00:00.000Z Updated: 2024-08-07T05:52:15.225Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/35732 http://www.securityfocus.com/archive/1/505083/100/0/threaded http://www.coresecurity.com/content/real-helix-dna http://osvdb.org/55982 http://www.vupen.com/english/advisories/2009/1947	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-2533`	vulnerable	2026-06-03 14:29:41.729266	Details available rmserver in RealNetworks Helix Server and Helix Mobile Server before 13.0.0 allows remote attackers to cause a denial of service (daemon exit) via multiple RTSP SET_PARAMETER requests with empty DataConvertBuffer headers. Published: 2009-07-20T17:00:00.000Z Updated: 2024-08-07T05:52:14.831Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/505083/100/0/threaded http://www.coresecurity.com/content/real-helix-dna http://osvdb.org/55981 http://www.securityfocus.com/bid/35731 http://www.vupen.com/english/advisories/2009/1947	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-5911`	vulnerable	2026-06-03 14:29:11.712489	Details available Multiple buffer overflows in RealNetworks Helix Server and Helix Mobile Server 11.x before 11.1.8 and 12.x before 12.0.1 allow remote attackers to (1) cause a denial of service via three crafted RTSP SETUP commands, or execute arbitrary code via (2) an NTLM authentication request with malformed base64-encoded data, (3) an RTSP DESCRIBE command, or (4) a DataConvertBuffer request. Published: 2009-01-20T15:26:00.000Z Updated: 2024-08-07T11:13:13.174Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1021500 http://www.securitytracker.com/id?1021498 http://secunia.com/advisories/33360 http://docs.real.com/docs/security/SecurityUpdate121508HS.pdf http://www.vupen.com/english/advisories/2008/3521	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Helix Server

PURL mappings

Vulnerability references

Contribute