CVE-2010-1317
Realnetworks Helix Server NTLM Authentication Invalid Base64 Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Heap-based buffer overflow in the NTLM authentication functionality in RealNetworks Helix Server and Helix Mobile Server 11.x, 12.x, and 13.x allows remote attackers to have an unspecified impact via invalid base64-encoded data.
Desbordamiento de búfer basado en pila en la funcionalidad de autenticación en RealNetworks Helix Server y Helix Mobile Server v11.x, v12.x, y v13.x, permite a atacantes remotos tener un impacto inesperado a través de un dato base64-encodec inválido.
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks Helix Server. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the authentication provided by the administrative web interface and is only present if it is configured to use NTLM. The vulnerability can be triggered by specifying invalid Base64 string within the Authorization header. If the string is not proper Base64 the vulnerable function returns -1 which is not verified and is later used as a length to a string copy routine.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2010-04-08 CVE Reserved
- 2010-04-20 CVE Published
- 2024-09-17 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/39490 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/39279 | 2010-04-21 | |
| http://www.realnetworks.com/uploadedFiles/Support/helix-support/SecurityUpdate041410HS.pdf | 2010-04-21 | |
| http://www.vupen.com/english/advisories/2010/0889 | 2010-04-21 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Realnetworks Search vendor "Realnetworks" | Helix Dna Server Search vendor "Realnetworks" for product "Helix Dna Server" | 11.0 Search vendor "Realnetworks" for product "Helix Dna Server" and version "11.0" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Dna Server Search vendor "Realnetworks" for product "Helix Dna Server" | 11.1 Search vendor "Realnetworks" for product "Helix Dna Server" and version "11.1" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Dna Server Search vendor "Realnetworks" for product "Helix Dna Server" | 11.1.2 Search vendor "Realnetworks" for product "Helix Dna Server" and version "11.1.2" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Dna Server Search vendor "Realnetworks" for product "Helix Dna Server" | 11.1.3 Search vendor "Realnetworks" for product "Helix Dna Server" and version "11.1.3" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Dna Server Search vendor "Realnetworks" for product "Helix Dna Server" | 12.0 Search vendor "Realnetworks" for product "Helix Dna Server" and version "12.0" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Dna Server Search vendor "Realnetworks" for product "Helix Dna Server" | 13.0 Search vendor "Realnetworks" for product "Helix Dna Server" and version "13.0" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Server Search vendor "Realnetworks" for product "Helix Server" | 11.0 Search vendor "Realnetworks" for product "Helix Server" and version "11.0" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Server Search vendor "Realnetworks" for product "Helix Server" | 11.1 Search vendor "Realnetworks" for product "Helix Server" and version "11.1" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Server Search vendor "Realnetworks" for product "Helix Server" | 12.0.0 Search vendor "Realnetworks" for product "Helix Server" and version "12.0.0" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Server Search vendor "Realnetworks" for product "Helix Server" | 13.0.0 Search vendor "Realnetworks" for product "Helix Server" and version "13.0.0" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Server Mobile Search vendor "Realnetworks" for product "Helix Server Mobile" | 11.0 Search vendor "Realnetworks" for product "Helix Server Mobile" and version "11.0" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Server Mobile Search vendor "Realnetworks" for product "Helix Server Mobile" | 12.0.0 Search vendor "Realnetworks" for product "Helix Server Mobile" and version "12.0.0" | - |
Affected
| ||||||
| Realnetworks Search vendor "Realnetworks" | Helix Server Mobile Search vendor "Realnetworks" for product "Helix Server Mobile" | 13.0.0 Search vendor "Realnetworks" for product "Helix Server Mobile" and version "13.0.0" | - |
Affected
| ||||||