← Back

CVE-2010-1317

nvd nist
Published: Apr 20, 2010Modified: Apr 29, 2026

JSON object

Loading...
7.5
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 10.0 / Impact: 6.4
Source: NVD

Description

Heap-based buffer overflow in the NTLM authentication functionality in RealNetworks Helix Server and Helix Mobile Server 11.x, 12.x, and 13.x allows remote attackers to have an unspecified impact via invalid base64-encoded data.

Affected (13)

Realnetworks
3 products
Helix Dna Server
Helix Server
Helix Server Mobile
Configuration A
13 vulnerable
Vulnerable SoftwareAffected Versions
Realnetworks
Helix Dna Server
Version 11.0
Helix Dna Server
Version 11.1.2
Helix Dna Server
Version 11.1.3
Helix Dna Server
Version 11.1
Helix Dna Server
Version 12.0
Helix Dna Server
Version 13.0
Realnetworks
Helix Server
Version 11.0
Helix Server
Version 11.1
Helix Server
Version 12.0.0
Helix Server
Version 13.0.0
Realnetworks
Helix Server Mobile
Version 11.0
Helix Server Mobile
Version 12.0.0
Helix Server Mobile
Version 13.0.0

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (8)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.