20 matches found
UBUNTU-CVE-2026-41470
LIVE555 before 2026.04.22 contains an authorization bypass vulnerability in RTSP session command handling that allows attackers to replay valid Session tokens from unauthenticated connections. Attackers who obtain a valid Session token can issue PLAY and TEARDOWN commands from a second TCP...
UBUNTU-CVE-2025-65405
A use-after-free in the ADTSAudioFileSource::samplingFrequency function of Live555 Streaming Media v2018.09.02 allows attackers to cause a Denial of Service DoS via supplying a crafted ADTS/AAC file...
The vulnerability of the subclasses AC3AudioFileServerMediaSubsession, ADTSAudioFileServerMediaSubsession, AMRAudioFileServerMediaSubsessionLive, and OnDemandServerMediaSubsession within the Live555 multimedia streaming library, which allows a malicious actor to trigger a service failure.
The vulnerability of the AC3AudioFileServerMediaSubsession, ADTSAudioFileServerMediaSubsession, AMRAudioFileServerMediaSubsessionLive, and OnDemandServerMediaSubsession classes within the Live555 streaming multimedia library suite is related to resource management errors. Exploiting this...
The vulnerability of the RTSP PLAY Command Handler component in the Live555 multimedia streaming library allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the RTSP PLAY Command Handler component in the Live555 multimedia streaming library relates to writing beyond buffer boundaries. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...
The vulnerability of the Live555 multimedia streaming library, related to the use of memory after it is freed, allows a hacker to cause a service failure.
The vulnerability of the Live555 multimedia streaming library lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Live555 multimedia streaming library, related to the use of memory after it is freed, allows a attacker to trigger a Denial-of-Service Attack (DoS).
The vulnerability of the Live555 multimedia streaming library lies in the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to trigger a Denial-of-Service attack...
The vulnerability of the PLAY command in the Live555 multimedia streaming library, which allows a hacker to cause a service failure.
The vulnerability of the PLAY command in the Live555 multimedia streaming library group is related to the insufficient use of the assert function. Exploiting this vulnerability can allow a malicious actor to cause service failures...
The vulnerability of the MP3 Stream Handler component in the Live555 multimedia streaming library allows a attacker to cause a service failure.
The vulnerability of the MP3 Stream Handler component in the Live555 multimedia streaming library lies in its ability to read data from buffers beyond acceptable limits. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
The vulnerability of the `createNewClientSessionWithId()` function in the `GenericMediaServer` component of the streaming multimedia Live555 library lies in its reliance on memory management after it is freed. This vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the createNewClientSessionWithId function in the GenericMediaServer component of the streaming multimedia Live555 library is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to gain access to confidential data, compromise i...
The vulnerability of the Live555 multimedia streaming library, related to integer overflow, allows an attacker to cause a service failure.
The vulnerability of the Live555 multimedia streaming library lies in a numerical overflow condition. Exploiting this vulnerability can allow an attacker to cause a service failure...
UBUNTU-CVE-2023-37117
A heap-use-after-free vulnerability was found in live555 version 2023.05.10 while handling the SETUP...
CVE-2021-39283
liveMedia/FramedSource.cpp in Live555 through 1.08 allows an assertion failure and application exit via multiple SETUP and PLAY commands...
The vulnerability of the Live555 library from the liblivemedia package, which allows a hacker to execute arbitrary code or cause a service failure.
The vulnerability of the Live555 library in the liblivemedia package is related to improper handling of RTSP stream termination after setting RTP/RTCP over RTSP. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause service failures...
The vulnerability of the `readSocket` function in the Live555 Media Server library, part of the `liblivemedia` package, allows a attacker to cause a service failure.
The vulnerability of the readSocket function in the GroupsockHelper.cpp library of the Live555 Media Server package from the liblivemedia library exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...
The vulnerability of the parseAuthorizationHeader function in the Live555 library of the liblivemedia package allows a attacker to execute arbitrary code or cause a service denial.
The vulnerability of the parseAuthorizationHeader function in the Live555 library from the liblivemedia package exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code or cause service failures...
CVE-2019-7314
liblivemedia in Live555 before 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a Use-After-Free error that causes the RTSP server to crash Segmentation fault or possibly have unspecified other impact...
UBUNTU-CVE-2019-7314
liblivemedia in Live555 before 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a Use-After-Free error that causes the RTSP server to crash Segmentation fault or possibly have unspecified other impact...
Exploit for Out-of-bounds Write in Live555 Live555_Media_Server
Live Networks LIVE555 streaming media RTSPServer lookForHeader...
CVE-2018-4013
An exploitable code execution vulnerability exists in the HTTP packet-parsing functionality of the LIVE555 RTSP server library version 0.92. A specially crafted packet can cause a stack-based buffer overflow, resulting in code execution. An attacker can send a packet to trigger this vulnerability...
UBUNTU-CVE-2018-4013
An exploitable code execution vulnerability exists in the HTTP packet-parsing functionality of the LIVE555 RTSP server library version 0.92. A specially crafted packet can cause a stack-based buffer overflow, resulting in code execution. An attacker can send a packet to trigger this vulnerability...