VYPR
Unrated severityNVD Advisory· Published Apr 17, 2012· Updated Jun 16, 2026

CVE-2012-1985

CVE-2012-1985

Description

Cross-site request forgery (CSRF) vulnerability in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to hijack the authentication of administrators for requests that cause a denial of service (stack consumption and daemon crash) via a malformed URL.

Affected products

8
  • cpe:2.3:a:realnetworks:helix_mobile_server:14.0.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:realnetworks:helix_mobile_server:14.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:helix_mobile_server:14.0.1:*:*:*:*:*:*:*
    • (no CPE)range: <14.3
  • cpe:2.3:a:realnetworks:helix_server:14.0.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:realnetworks:helix_server:14.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:helix_server:14.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:helix_server:14.2:*:*:*:*:*:*:*
    • cpe:2.3:a:realnetworks:helix_server:14.2.0.212:*:*:*:*:*:*:*
    • (no CPE)range: <14.3

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.