7.5

CVE-2002-1643

Exploit
Multiple buffer overflows in RealNetworks Helix Universal Server 9.0 (9.0.2.768) allow remote attackers to execute arbitrary code via (1) a long Transport field in a SETUP RTSP request, (2) a DESCRIBE RTSP request with a long URL argument, or (3) two simultaneous HTTP GET requests with long arguments.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 74.32% 0.994
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.kb.cert.org/vuls/id/974689
Patch
Third Party Advisory
US Government Resource
http://www.nextgenss.com/advisories/realhelix.txt
Vendor Advisory
http://www.securityfocus.com/archive/1/304203
Vendor Advisory
http://www.securityfocus.com/bid/6454
Patch
Exploit
http://www.securityfocus.com/bid/6456
Patch
http://www.securityfocus.com/bid/6458
Patch
http://www.service.real.com/help/faq/security/bufferoverrun12192002.html
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/10915
https://exchange.xforce.ibmcloud.com/vulnerabilities/10916
https://exchange.xforce.ibmcloud.com/vulnerabilities/10917