19 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-20409
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Bento4 1.5.1-627. There is a heap-based buffer over-read in AP4AvccAtom::Create in Core/Ap4AvccAtom.cpp, as demonstrated by mp42hls...
Linux Distros Unpatched Vulnerability : CVE-2018-14584
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in Bento4 1.5.1-624. AP4AvccAtom::Create in Core/Ap4AvccAtom.cpp has a heap- based buffer over-read. CVE-2018-14584 Note that Nessu...
Linux Distros Unpatched Vulnerability : CVE-2019-15050
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the AP4AvccAtom class at Core/Ap4AvccAtom.cpp. CVE-2019-15050 Note that...
CVE-2019-15050
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the AP4AvccAtom class at Core/Ap4AvccAtom.cpp...
UBUNTU-CVE-2019-15050
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the AP4AvccAtom class at Core/Ap4AvccAtom.cpp...
UBUNTU-CVE-2018-20409
An issue was discovered in Bento4 1.5.1-627. There is a heap-based buffer over-read in AP4AvccAtom::Create in Core/Ap4AvccAtom.cpp, as demonstrated by mp42hls...
Bento4 Buffer Overflow Vulnerability (CNVD-2018-14699)
Bento4 is an open source C++ library for reading and writing MP4 files. A heap buffer overflow vulnerability exists in AP4AvccAtom::Create in the Core/Ap4AvccAtom.cpp file in Bento4 version 1.5.1-624. An attacker can exploit this vulnerability to cause a heap buffer out-of-bounds read...
UBUNTU-CVE-2018-14584
An issue has been discovered in Bento4 1.5.1-624. AP4AvccAtom::Create in Core/Ap4AvccAtom.cpp has a heap-based buffer over-read...
Bento4 AP4_AvccAtom and AP4_HvccAtom Class Heap Buffer Overflow Vulnerability
Bento4 is an open source C++ library for reading and writing MP4 files. A security vulnerability exists in the AP4AvccAtom and AP4HvccAtom classes in Bento4 version 1.5.0-617, which stems from the program's failure to properly validate the size of data. An attacker could exploit this vulnerabilit...
UBUNTU-CVE-2017-14646
The AP4AvccAtom and AP4HvccAtom classes in Bento4 version 1.5.0-617 do not properly validate data sizes, leading to a heap-based buffer over-read and application crash in AP4DataBuffer::SetData in Core/Ap4DataBuffer.cpp...
Bento4 mp42ts 'AP4_AvccAtom::InspectFields' function denial of service vulnerability
Bento4 is an open source C++ library for reading and writing MP4 files. mp42ts is one of the tools to convert MP4 files to MPEG2-TS files. A security vulnerability in the 'AP4AvccAtom::InspectFields' function in the Bento4 mp42ts Core/Ap4AvccAtom.cpp file allows remote attackers to exploit the...
UBUNTU-CVE-2017-12476
The AP4AvccAtom::InspectFields function in Core/Ap4AvccAtom.cpp in Bento4 mp4dump before 1.5.0-616 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted mp4 file...
CVE-2016-3863
Multiple stack-based buffer overflows in the AVCC reassembly implementation in Utils.cpp in libstagefright in MediaMuxer in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allow remote attackers to execute arbitrary code via a...
CVE-2016-3863
Multiple stack-based buffer overflows in the AVCC reassembly implementation in Utils.cpp in libstagefright in MediaMuxer in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allow remote attackers to execute arbitrary code via a...
Stack overflow
Multiple stack-based buffer overflows in the AVCC reassembly implementation in Utils.cpp in libstagefright in MediaMuxer in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allow remote attackers to execute arbitrary code via a...
UBUNTU-CVE-2016-3863
Multiple stack-based buffer overflows in the AVCC reassembly implementation in Utils.cpp in libstagefright in MediaMuxer in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allow remote attackers to execute arbitrary code via a...
CVE-2016-3863
CVE-2016-3863 affects Android's MediaMuxer/LibStagefright AVCC reassembly code (Utils.cpp). Multiple stack-based buffer overflows in the AVCC reassembly path can be triggered by a crafted media file, enabling arbitrary code execution. Affected Android versions include 4.x prior to 4.4.4; 5.0.x pr...
CVE-2016-3863
Multiple stack-based buffer overflows in the AVCC reassembly implementation in Utils.cpp in libstagefright in MediaMuxer in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allow remote attackers to execute arbitrary code via a...
Apple QuickTime H264 Picture Width Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the QuicktimeH26...