Vulnerability Details CVE-2004-0389
RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via malformed requests that trigger a null dereference, as demonstrated using (1) GET_PARAMETER or (2) DESCRIBE requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.081
EPSS Ranking 91.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
- http://secunia.com/advisories/11395
- http://www.idefense.com/application/poi/display?id=102&type=vulnerabilities
- http://www.securityfocus.com/bid/10157
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15880
- http://secunia.com/advisories/11395
- http://www.idefense.com/application/poi/display?id=102&type=vulnerabilities
- http://www.securityfocus.com/bid/10157
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15880
Products affected by CVE-2004-0389
-
cpe:2.3:a:realnetworks:helix_universal_server:9.0.1
-
cpe:2.3:a:realnetworks:helix_universal_server:9.0.2