Lucene search
Jplopezy33652B56-128F-41A7-AFCC-10641F69FF14HistoryMar 22, 2023 - 6:12 p.m.
Unhandled SWF Tags in MP4Box: Potential Vulnerability in GPAC
2023-03-2218:12:15
jplopezy
www.huntr.dev
9
unhandled swf tags
mp4box
potential vulnerability
gpac
denial of service
buffer overflows
malicious attacks
bug bounty
poc
0.0004 Low
EPSS
Percentile
5.1%
An unhandled series of SWF tags have been identified in the MP4Box software, which is part of the GPAC multimedia framework. These tags are not properly processed, leading to potential vulnerabilities such as denial of service, buffer overflows, or other malicious attacks.
POC: # ./MP4Box -dash 1000 POC4
LINK: https://drive.google.com/file/d/1hHzxolxklZDG_wtowwUEmel9-HAya9Az/view?usp=share_link
Related
prion
prion
Denial of service
2023-03-27 16:15:00
nvd
nvd
CVE-2023-1654
2023-03-27 16:15:10
cvelist
cvelist
CVE-2023-1654 Denial of Service in gpac/gpac
2023-03-27 00:00:00
debiancve
debiancve
CVE-2023-1654
2023-03-27 16:15:10
cve
cve
CVE-2023-1654
2023-03-27 16:15:10
ubuntucve
ubuntucve
CVE-2023-1654
2023-03-27 00:00:00
osv
osv
CVE-2023-1654
2023-03-27 16:15:10
gpac - security update
2023-05-26 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-03-31 03:48:47
debian
debian
[SECURITY] [DSA 5411-1] gpac security update
2023-05-26 14:00:08
nessus
nessus
Debian DSA-5411-1 : gpac - security update
2023-05-27 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5411-1)
2023-05-29 00:00:00