RealNetworks Helix Server up to 11.1 AgentX::receive_agentx numeric error
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 10.0 | $0-$5k | 0.00 |
Summary
A vulnerability, which was classified as critical, has been found in RealNetworks Helix Server up to 11.1. This issue affects the function AgentX::receive_agentx. This manipulation causes numeric error.
This vulnerability is tracked as CVE-2010-1319. No exploit exists.
Details
A vulnerability was found in RealNetworks Helix Server up to 11.1. It has been declared as very critical. Affected by this vulnerability is the function AgentX::receive_agentx. The manipulation with an unknown input leads to a numeric error vulnerability. The CWE definition for the vulnerability is CWE-189. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:
Integer overflow in the AgentX::receive_agentx function in AgentX++ 1.4.16, as used in RealNetworks Helix Server and Helix Mobile Server 11.x through 13.x and other products, allows remote attackers to execute arbitrary code via a request with a crafted payload length.
The weakness was disclosed 04/20/2010 by Manuel Santamarina Suarez (Website). The advisory is shared at vupen.com. This vulnerability is known as CVE-2010-1319. The exploitation appears to be easy. The attack can be launched remotely. The exploitation doesn't need any form of authentication. Technical details are known, but no exploit is available. The price for an exploit might be around USD at the moment (estimation calculated on 04/19/2025). It is expected to see the exploit prices for this product decreasing in the near future.
The vulnerability scanner Nessus provides a plugin with the ID 45543 (RealNetworks Helix Server 11.x / 12.x / 13.x Multiple Vulnerabilities), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Misc.. The commercial vulnerability scanner Qualys is able to test this issue with plugin 117865 (RealNetworks Helix Server Multiple Remote Code Execution Vulnerabilities).
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product. Furthermore it is possible to detect and prevent this kind of attack with TippingPoint and the filter 10513.
The vulnerability is also documented in the databases at Tenable (45543), SecurityFocus (BID 39490†), Secunia (SA39279†) and Vulnerability Center (SBV-25476†). The entries VDB-52836 and VDB-52835 are pretty similar. If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Product
Vendor
Name
Version
License
Website
- Vendor: https://www.realnetworks.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 10.0VulDB Meta Temp Score: 10.0
VulDB Base Score: 10.0
VulDB Temp Score: 10.0
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Numeric errorCWE: CWE-189
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 45543
Nessus Name: RealNetworks Helix Server 11.x / 12.x / 13.x Multiple Vulnerabilities
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
OpenVAS ID: 100579
OpenVAS Name: RealNetworks Helix and Helix Mobile Server Multiple Remote Code Execution Vulnerabilities
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: no mitigation knownStatus: 🔍
0-Day Time: 🔍
TippingPoint: 🔍
McAfee IPS Version: 🔍
ISS Proventia IPS: 🔍
PaloAlto IPS: 🔍
Fortigate IPS: 🔍
Timeline
04/08/2010 🔍04/14/2010 🔍
04/14/2010 🔍
04/20/2010 🔍
04/20/2010 🔍
04/21/2010 🔍
03/19/2015 🔍
04/19/2025 🔍
Sources
Vendor: realnetworks.comAdvisory: vupen.com⛔
Researcher: Manuel Santamarina Suarez
Status: Not defined
Confirmation: 🔍
CVE: CVE-2010-1319 (🔍)
GCVE (CVE): GCVE-0-2010-1319
GCVE (VulDB): GCVE-100-52837
SecurityFocus: 39490 - RealNetworks Helix and Helix Mobile Server NTLM Authentication Heap Buffer Overflow Vulnerability
Secunia: 39279
Vulnerability Center: 25476 - RealNetworks Helix Server and Helix Mobile Server Arbitrary Code Execution due to Integer Overflow, High
See also: 🔍
Entry
Created: 03/19/2015 12:22Updated: 04/19/2025 22:21
Changes: 03/19/2015 12:22 (64), 02/23/2017 10:27 (9), 09/08/2021 09:20 (3), 09/08/2021 09:22 (1), 04/19/2025 22:21 (16)
Complete: 🔍
Cache ID: 216::103
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
No comments yet. Languages: en.
Please log in to comment.