Signature Detail

Short Name	RTSP:EMPTY-HEADER
Severity	Medium
Recommended	No
Category	RTSP
Keywords	Empty Header Field
Release Date	2009/08/06
Update Number	1479
Supported Platforms	idp-4.0+, isg-3.4+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

RTSP: Empty Header Field

This signature detects attempts to exploit a known vulnerability against Real Media Helix server. A successful attack can result in a denial-of-service condition.

Extended Description

RealNetworks Helix Server is prone to a remote denial-of-service vulnerability because the application fails to properly handle invalid requests. Exploiting this issue allows remote attackers to cause the application to crash, effectively denying service to legitimate users. These issues affect versions prior to Helix Server and Helix Mobile Server 13.0.0.

Affected Products

Real Networks Helix Mobile Server 11.1.2
Real Networks Helix Mobile Server 11.1.4
Real Networks Helix Mobile Server 11.1.6
Real Networks Helix Mobile Server 11.1.7
Real Networks Helix Mobile Server 11.1.8
Real Networks Helix Mobile Server 12.0.0
Real Networks Helix Mobile Server 12.0.1
Real Networks Helix Mobile Server 12.0.1 .215
Real Networks Helix Server 11.1.2
Real Networks Helix Server 11.1.4
Real Networks Helix Server 11.1.6
Real Networks Helix Server 11.1.7
Real Networks Helix Server 11.1.8
Real Networks Helix Server 12.0.0
Real Networks Helix Server 12.0.1
Real Networks Helix Server 12.0.1 .215

References

BugTraq: 35731
CVE: CVE-2009-2533

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

RTSP: Empty Header Field

Extended Description

Affected Products

References