RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via malformed requests that trigger a null dereference, as demonstrated using (1) GET_PARAMETER or (2) DESCRIBE requests.
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Helix_universal_server | Realnetworks | 9.0.1 (including) | 9.0.1 (including) |
Helix_universal_server | Realnetworks | 9.0.2 (including) | 9.0.2 (including) |