APP: Helix Universal Server Invalid Content Length
This signature detects attempts to exploit a known vulnerability against the Real Networks Helix Universal Server. An attacker can send an RTSP request with a invalid content length, which can cause a denial-of-service condition.
Extended Description
A remote integer handling denial of service vulnerability affects the Real Networks Helix Universal Server. The problem surrounds the mishandling of some POST headers values. An attacker can exploit this issue to cause the affected server to consume excessive computer resources and hang, denying service to legitimate users.
Affected Products
Real_networks helix_universal_mobile_server
Short Name
APP:REAL:NEG-CONT-LEN
Severity
Minor
Recommended
False
Recommended Action
None
Category
APP
Keywords
CVE-2004-0774 Content Helix Invalid Length Server Universal bid:11352
Release Date
08/04/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/554,3104
False Positive
Unknown
Vendors
Real_networks
CVSS Score
7.8