CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2006-3276

HIGH
7.5
CVSS Severity Score
EPSS Score0.1890%
EPSS Percentile17.13th
Published2006年6月28日
Last Modified2026年4月16日

Vulnerability Description

Heap-based buffer overflow in RealNetworks Helix DNA Server 10.0 and 11.0 allows remote attackers to execute arbitrary code via (1) a long User-Agent HTTP header in the RTSP service and (2) unspecified vectors involving the "parsing of HTTP URL schemes".

Affected Platforms (CPE)

📦
Realnetworks

Helix Dna Server

= 10.0
📦
Realnetworks

Helix Dna Server

= 11.0

References & Advisories

🔗 http://archives.neohapsis.com/archives/fulldisclosure/2006-06/0600.html
🔗 http://labs.musecurity.com/advisories/MU-200606-01.txt
🔗 http://secunia.com/advisories/20784
🔗 http://securitytracker.com/id?1016365
🔗 http://www.osvdb.org/26799
🔗 http://www.securityfocus.com/bid/18606
🔗 http://www.vupen.com/english/advisories/2006/2521
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/27316

相關漏洞威脅

CVE-2006-602610.0

Heap-based buffer overflow in Real Networks Helix Server and Helix Mobile Server before 11.1.3, and Helix DNA Server 11.0 and 11.1...

CVE-2007-456110.0

Heap-based buffer overflow in the RTSP service in Helix DNA Server before 11.1.4 allows remote attackers to execute arbitrary code...

CVE-2006-099210.0

Stack-based buffer overflow in Novell GroupWise Messenger before 2.0 Public Beta 2 allows remote attackers to execute arbitrary co...

CVE-2006-446110.0

Paessler IPCheck Server Monitor before 5.3.3.639/640 does not properly implement a "list of acceptable host IP addresses in the pr...