Helix Universal Server Remotely Exploitable Vulnerability - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Helix Universal Server Remotely Exploitable Vulnerability

Secunia Advisory:	SA9593
Release Date:	2003-08-25
Last Update:	2003-09-15

Critical:	Highly critical
Impact:	System access
Where:	From remote
Solution Status:	Vendor Patch

Software:	Helix Universal Server 9.x RealServer G2 RealSystem Server 7 RealSystem Server 8

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: A vulnerability has been reported in Helix Universal Server, RealServer, and RealSystem Server possibly allowing malicious people to gain system access. The problem is that "vsrcplin.so.9.0" / "vsrcplin.so.6.0" / "vsrc3260.dll" plugins fails to handle long requests. This may allow malicious people to execute arbitrary code. Solution: Updated versions are available: Tru64 http://forms.real.com/rnforms/product...ic&version=Helix+Universal+Server FreeBSD http://forms.real.com/rnforms/product...ic&version=Helix+Universal+Server HP UX http://forms.real.com/rnforms/product...ic&version=Helix+Universal+Server IBM AIX http://forms.real.com/rnforms/product...ic&version=Helix+Universal+Server Linux http://forms.real.com/rnforms/product...ic&version=Helix+Universal+Server Solaris 2.7 http://forms.real.com/rnforms/product...ic&version=Helix+Universal+Server Solaris 2.8 http://forms.real.com/rnforms/product...ic&version=Helix+Universal+Server Windows http://forms.real.com/rnforms/product...ic&version=Helix+Universal+Server Provided and/or discovered by: Dave Aitel, Immunity Changelog: 2003-08-25: Updated credits. Updated with link to Dave Aitel's advisory. 2003-08-29: Updated the file names due to changes in the original Real advisory. 2003-08-31: Added link to CERT vulnerability note in "Other References" section. 2003-09-15: Added information about updated versions. Original Advisory: http://www.service.real.com/help/faq/security/rootexploit082203.html http://lists.immunitysec.com/pipermail/dailydave/2003-August/000030.html http://www.service.real.com/help/faq/security/rootexploit091103.html Other References: CERT: http://www.kb.cert.org/vuls/id/934932



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

4 Related Secunia Security Advisories

1. RealNetworks Helix Universal Server Denial of Service Vulnerability

2. Helix Universal Server HTTP Request Handling Denial of Service

3. Helix Administrative Interface HTTP POST Request Handling Vulnerability

4. Helix Universal Server buffer overrun

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Sun Solaris NFSv4 Client Kernel Module Denial of Service

2.	Avaya CMS Solaris namefs Kernel Module Privilege Escalation

3.	Avaya CMS Solaris "snoop" Multiple Vulnerabilities

4.	Banner Management "id" SQL Injection Vulnerability

5.	Active PHP Bookmarks "id" SQL Injection Vulnerability

6.	Avaya CMS Solaris "picld" Denial of Service

7.	Opera Multiple Vulnerabilities

8.	Ubuntu update for postfix

9.	WS_FTP Home / Professional Format String Vulnerability

10.	IBM WebSphere Portal Server Authentication Bypass