CVE-2006-3276

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
28/06/2006
Last modified:
03/04/2025

Description

Heap-based buffer overflow in RealNetworks Helix DNA Server 10.0 and 11.0 allows remote attackers to execute arbitrary code via (1) a long User-Agent HTTP header in the RTSP service and (2) unspecified vectors involving the "parsing of HTTP URL schemes".

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:realnetworks:helix_dna_server:10.0:*:*:*:*:*:*:*
cpe:2.3:a:realnetworks:helix_dna_server:11.0:*:*:*:*:*:*:*