CVE-2004-0774

Name of the Vulnerable Software and Affected Versions RealNetworks Helix Universal Server version 9.0.2 for Linux RealNetworks Helix Universal Server version 9.0.3 for Windows

Description The issue allows remote attackers to cause a denial of service, resulting in CPU and memory exhaustion. This can be achieved via a POST request with a Content-Length header set to -1.

Recommendations For RealNetworks Helix Universal Server version 9.0.2 for Linux, restrict access to the server to prevent remote attackers from sending malicious POST requests. For RealNetworks Helix Universal Server version 9.0.3 for Windows, consider implementing validation for the Content-Length header to prevent it from being set to -1. At the moment, there is no information about a newer version that contains a fix for this vulnerability.