CVSS: 7.5EPSS: 89%CPEs: 12EXPL: 2CVE-2003-0725 – Real Server 7/8/9 (Windows / Linux) - Remote Code Execution
https://notcve.org/view.php?id=CVE-2003-0725
Buffer overflow in the RTSP protocol parser for the View Source plug-in (vsrcplin.so or vsrcplin3260.dll) for RealNetworks Helix Universal Server 9 and RealSystem Server 8, 7 and RealServer G2 allows remote attackers to execute arbitrary code. • https://www.exploit-db.com/exploits/86 http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0087.html http://lists.immunitysec.com/pipermail/dailydave/2003-August/000030.html http://www.kb.cert.org/vuls/id/934932 http://www.securityfocus.com/bid/8476 http://www.service.real.com/help/faq/security/rootexploit082203.html •
CVSS: 7.5EPSS: 95%CPEs: 2EXPL: 4CVE-2002-1643 – RealServer - Describe Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1643
Multiple buffer overflows in RealNetworks Helix Universal Server 9.0 (9.0.2.768) allow remote attackers to execute arbitrary code via (1) a long Transport field in a SETUP RTSP request, (2) a DESCRIBE RTSP request with a long URL argument, or (3) two simultaneous HTTP GET requests with long arguments. • https://www.exploit-db.com/exploits/16286 https://www.exploit-db.com/exploits/9937 https://www.exploit-db.com/exploits/23 http://www.kb.cert.org/vuls/id/974689 http://www.nextgenss.com/advisories/realhelix.txt http://www.securityfocus.com/archive/1/304203 http://www.securityfocus.com/bid/6454 http://www.securityfocus.com/bid/6456 http://www.securityfocus.com/bid/6458 http://www.service.real.com/help/faq/security/bufferoverrun12192002.html https://exchange.xforce.ibm •