CVE-2012-5877

Nero MediaHome < 4.5.8.0 - Denial of Service via HTTP Header Without Name

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-5877. PoCs published by High-Tech Bridge SA.

AI-analyzed exploit summary The exploit demonstrates multiple DoS vulnerabilities in Nero MediaHome server by sending maliciously crafted HTTP requests with excessively long URIs or headers, causing stack or heap-based buffer overflows.

Description

Nero MediaHome 4.5.8.0 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an HTTP header without a name.

Exploits (1)

exploitdb WORKING POC
by High-Tech Bridge SA · textdoswindows
https://www.exploit-db.com/exploits/24022

The exploit demonstrates multiple DoS vulnerabilities in Nero MediaHome server by sending maliciously crafted HTTP requests with excessively long URIs or headers, causing stack or heap-based buffer overflows.

Classification
Working Poc 100%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Nero MediaHome 4.5.8.0 and prior
No auth needed
Prerequisites: Network access to port 54444/TCP
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/81107
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/57253
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2013-01/0037.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/89151
Vendor Advisory x_refsource_misc
https://www.htbridge.com/advisory/HTB23130
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/24022

Scores

EPSS 0.0768
EPSS Percentile 93.8%

Details

Status published
Products (1)
nero/mediahome < 4.5.8.0
Published May 30, 2014
Tracked Since Feb 18, 2026