Vulnerability Details CVE-2003-0725
Buffer overflow in the RTSP protocol parser for the View Source plug-in (vsrcplin.so or vsrcplin3260.dll) for RealNetworks Helix Universal Server 9 and RealSystem Server 8, 7 and RealServer G2 allows remote attackers to execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.554
EPSS Ranking 97.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0087.html
- http://lists.immunitysec.com/pipermail/dailydave/2003-August/000030.html
- http://www.kb.cert.org/vuls/id/934932
- http://www.securityfocus.com/bid/8476
- http://www.service.real.com/help/faq/security/rootexploit082203.html
- http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0087.html
- http://lists.immunitysec.com/pipermail/dailydave/2003-August/000030.html
- http://www.kb.cert.org/vuls/id/934932
- http://www.securityfocus.com/bid/8476
- http://www.service.real.com/help/faq/security/rootexploit082203.html
Products affected by CVE-2003-0725
-
cpe:2.3:a:realnetworks:helix_universal_server:8.0.1
-
cpe:2.3:a:realnetworks:helix_universal_server:9.0
-
cpe:2.3:a:realnetworks:helix_universal_server:9.0.1
-
cpe:2.3:a:realnetworks:helix_universal_server:9.0.2.794
-
cpe:2.3:a:realnetworks:realserver:7.0
-
cpe:2.3:a:realnetworks:realserver:7.0.1
-
cpe:2.3:a:realnetworks:realserver:7.0.2
-
cpe:2.3:a:realnetworks:realserver:8.0
-
cpe:2.3:a:realnetworks:realserver:8.0.1
-
cpe:2.3:a:realnetworks:realserver:8.0.2
-
cpe:2.3:a:realnetworks:realserver:8.0_beta
-
cpe:2.3:a:realnetworks:realserver:g2_1.0