CVE-2002-1643

Exploitation Summary

EIP tracks 4 public exploits for CVE-2002-1643. PoCs published by Metasploit, Johnny Cyberpunk, H D Moore, including Metasploit module exploits/multi/realserver/describe.

AI-analyzed exploit summary This Metasploit module exploits a buffer overflow in RealServer via a malformed RTSP DESCRIBE request. It targets multiple platforms (Linux, BSD, Windows) and includes a payload delivery mechanism.

Description

Multiple buffer overflows in RealNetworks Helix Universal Server 9.0 (9.0.2.768) allow remote attackers to execute arbitrary code via (1) a long Transport field in a SETUP RTSP request, (2) a DESCRIBE RTSP request with a long URL argument, or (3) two simultaneous HTTP GET requests with long arguments.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotemultiple

https://www.exploit-db.com/exploits/16286

View Code ZIP pw:eip

This Metasploit module exploits a buffer overflow in RealServer via a malformed RTSP DESCRIBE request. It targets multiple platforms (Linux, BSD, Windows) and includes a payload delivery mechanism.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: RealServer 7/8/9

No auth needed

Prerequisites: Network access to the RTSP service · Vulnerable RealServer version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Johnny Cyberpunk · cremotewindows

https://www.exploit-db.com/exploits/23

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in RealServer versions prior to 8.0.2 via a crafted RTSP SETUP request. It delivers a reverse shell payload to spawn a command shell on TCP port 31337.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: RealServer < 8.0.2

No auth needed

Prerequisites: Network access to TCP port 554 (RTSP) on the target · Target running vulnerable RealServer version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by H D Moore · rubyremotemultiple

https://www.exploit-db.com/exploits/9937

View Code ZIP pw:eip

This exploit targets a buffer overflow in RealServer 7/8/9 via a malformed RTSP DESCRIBE request. It uses a universal payload to achieve remote code execution on Linux, BSD, and Windows systems.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: RealServer 7/8/9

No auth needed

Prerequisites: Network access to the RTSP service · Vulnerable RealServer version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC GREAT

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/realserver/describe.rb

View Code ZIP pw:eip

This Metasploit module exploits a buffer overflow in RealServer 7/8/9 via a malformed RTSP DESCRIBE request. It targets multiple platforms (Linux, BSD, Windows) and delivers a payload encoded in hex to achieve remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: RealServer 7/8/9

No auth needed

Prerequisites: Network access to the RTSP service · Vulnerable RealServer version

MITRE ATT&CK