A remote heap overflow condition in Real Helix's RTSP service could allow for arbitrary code execution. The vulnerable code is triggered with the use of an RTSP command with multiple 'Require' headers. Versions prior to 11.1.4 are affected.
99fbe1a74de2e483e58433d3eafc5f2697345d9fc0f9bf9de2e4664637001ed8