CVE-2004-0389

Name of the Vulnerable Software and Affected Versions RealNetworks Helix Universal Server versions 9.0.1 through 9.0.2

Description The issue allows remote attackers to cause a denial of service, resulting in a crash, via malformed requests that trigger a null dereference. This can be demonstrated using either GET PARAMETER or DESCRIBE requests.

Recommendations For versions 9.0.1 and 9.0.2, consider restricting access to the server to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using malformed requests that could trigger a null dereference.