PT-2001-1216 · Realnetworks · Realserver

Published

2001-01-09

Updated

2017-10-10

CVE-2000-1181

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: RealServer versions 7 and earlier

Description: The issue allows remote attackers to obtain portions of RealServer's memory contents, possibly including sensitive information, by accessing the "/admin/includes/" API endpoint.

Recommendations: For versions 7 and earlier, consider restricting access to the "/admin/includes/" API endpoint until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-1181

Affected Products

Realserver

PT-2001-1216 · Realnetworks · Realserver

CVE-2000-1181

Related Identifiers

Affected Products

References · 6