Unrated severityNVD Advisory· Published Apr 17, 2012· Updated Jun 16, 2026
CVE-2012-1985
CVE-2012-1985
Description
Cross-site request forgery (CSRF) vulnerability in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to hijack the authentication of administrators for requests that cause a denial of service (stack consumption and daemon crash) via a malformed URL.
Affected products
8cpe:2.3:a:realnetworks:helix_mobile_server:14.0.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:realnetworks:helix_mobile_server:14.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:helix_mobile_server:14.0.1:*:*:*:*:*:*:*
- (no CPE)range: <14.3
cpe:2.3:a:realnetworks:helix_server:14.0.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:realnetworks:helix_server:14.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:helix_server:14.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:helix_server:14.2:*:*:*:*:*:*:*
- cpe:2.3:a:realnetworks:helix_server:14.2.0.212:*:*:*:*:*:*:*
- (no CPE)range: <14.3
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.