RealNetworks Helix Universal Server 9.0.2/9.0.3 POST Request Content-Length memory allocation

| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 7.2 | $0-$5k | 0.00 |
Summary
A vulnerability was found in RealNetworks Helix Universal Server 9.0.2/9.0.3. It has been classified as problematic. Affected by this vulnerability is an unknown functionality of the component POST Request Handler. This manipulation of the argument Content-Length with the input -1 causes memory allocation.
This vulnerability appears as CVE-2004-0774. There is no available exploit.
Upgrading the affected component is recommended.
Details
A vulnerability was found in RealNetworks Helix Universal Server 9.0.2/9.0.3. It has been declared as critical. Affected by this vulnerability is an unknown code block of the component POST Request Handler. The manipulation of the argument Content-Length with the input value -1 leads to a memory allocation vulnerability. The CWE definition for the vulnerability is CWE-789. The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated. As an impact it is known to affect availability. The summary by CVE is:
RealNetworks Helix Universal Server 9.0.2 for Linux and 9.0.3 for Windows allows remote attackers to cause a denial of service (CPU and memory exhaustion) via a POST request with a Content-Length header set to -1.
The weakness was presented 11/03/2004 (Website). It is possible to read the advisory at idefense.com. This vulnerability is known as CVE-2004-0774 since 08/09/2004. The exploitation appears to be easy. The attack can be launched remotely. The exploitation doesn't need any form of authentication. Technical details of the vulnerability are known, but there is no available exploit.
The vulnerability scanner Nessus provides a plugin with the ID 15438 (Helix Universal Server Remote Integer Handling DoS), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Denial of Service and running in the context r. The commercial vulnerability scanner Qualys is able to test this issue with plugin 38325 (RealNetworks Helix Universal Server Remote Integer Handling Denial of Service Vulnerability).
Upgrading eliminates this vulnerability. Furthermore it is possible to detect and prevent this kind of attack with TippingPoint and the filter 3710.
The vulnerability is also documented in the databases at X-Force (17648), Tenable (15438), SecurityFocus (BID 11352†) and Vulnerability Center (SBV-5533†). Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Vendor
Name
Version
License
Website
- Vendor: https://www.realnetworks.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.5VulDB Meta Temp Score: 7.2
VulDB Base Score: 7.5
VulDB Temp Score: 7.2
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Memory allocationCWE: CWE-789 / CWE-400 / CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 15438
Nessus Name: Helix Universal Server Remote Integer Handling DoS
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
TippingPoint: 🔍
PaloAlto IPS: 🔍
Timeline
08/09/2004 🔍10/07/2004 🔍
10/07/2004 🔍
10/08/2004 🔍
10/11/2004 🔍
11/03/2004 🔍
11/03/2004 🔍
01/09/2015 🔍
07/11/2025 🔍
Sources
Vendor: realnetworks.comAdvisory: idefense.com⛔
Status: Confirmed
CVE: CVE-2004-0774 (🔍)
GCVE (CVE): GCVE-0-2004-0774
GCVE (VulDB): GCVE-100-22363
X-Force: 17648
SecurityFocus: 11352 - Real Networks Helix Universal Server Remote Integer Handling Denial Of Service Vulnerability
Vulnerability Center: 5533 - DoS in RealNetworks Helix Universal Server via Malicious POST Request, High
Entry
Created: 01/09/2015 16:19Updated: 07/11/2025 20:45
Changes: 01/09/2015 16:19 (66), 05/25/2019 09:52 (3), 06/30/2021 12:26 (3), 07/11/2025 20:45 (18)
Complete: 🔍
Cache ID: 216::103
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.