PT-2023-15159 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC MP4Box version 2.1-DEV-rev574-g9d5bb184b Description: The issue is related to a segmentation violation via the function gf sm load init swf at scene manager/swf parse.c. No information is provided about the estimated number of potentiall...

PT-2022-18249 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC mp4box version 1.1.0-DEV-rev1727-g8be34973d-master Description: The issue is related to a use-after-free vulnerability in the gf node get attribute by tag function. This vulnerability can lead to memory corruption and potentially allow a...

PT-2022-11275 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: GPAC version 1.0.1 Description: The issue allows attackers to cause a denial of service via a crafted file in the MP4Box command, specifically through the gf bs write data function. Recommendations: For GPAC version 1.0.1, consider disabling...

PT-2023-15453 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC MP4Box version 2.1-DEV-rev644-g5c4df2a67 Description: The issue is related to a buffer overflow in the hevc parse vps extension function, located in the media tools/av parsers.c file at line 7662. This buffer overflow can be exploited,...

PT-2023-3406 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: gpac versions prior to 2.2.2 Description: The issue is related to a NULL Pointer Dereference in the gpac library, specifically in the gf isom fragment add sample ex function located in isomedia/movie fragments.c. This could allow a remote...

PT-2023-15166 · Unknown +2 · Gpac Mp4Box +2

Name of the Vulnerable Software and Affected Versions: GPAC MP4box version 2.1-DEV-rev574-g9d5bb184b Description: The issue is related to a heap use-after-free vulnerability. It occurs via the file filters/dmx m2ts.c at line 470 in the m2tsdmx declare pid function. This vulnerability can be...

PT-2022-18248 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC mp4box version 1.1.0-DEV-rev1759-geb2d1e6dd Description: The issue is a heap-buffer-overflow vulnerability in the function gf isom apple enum tag. This vulnerability can be exploited, but no specific details about the estimated number of...

PT-2021-6596 · Gpac +1 · Gpac +1

Name of the Vulnerable Software and Affected Versions: gpac versions through 20200801 Description: An issue exists in the function vwid box del located in box code base.c, which allows an attacker to cause Denial of Service due to a NULL pointer dereference. This issue can be exploited by a remot...

PT-2023-1156 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: gpac/gpac versions prior to 2.3.0-DEV Description: The issue is related to a Use After Free condition in the gpac/gpac multimedia platform, specifically concerning the gf odf vvc cfg read bs function. This condition involves the use of memory...

PT-2023-14945 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC version 2.1-DEV-rev505-gb9577e6ad-master Description: A memory leak was discovered in GPAC via the gf isom box parse ex function at box funcs.c. This issue may allow for unauthorized access or other malicious activities. Recommendations:...

PT-2022-26726 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC version 2.1-DEV-rev368-gfd054169b-master Description: A segmentation violation was discovered in GPAC via the function gf isom get meta item info at /isomedia/meta.c. Recommendations: For GPAC version 2.1-DEV-rev368-gfd054169b-master, as...

PT-2022-26725 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC version 2.1-DEV-rev368-gfd054169b-master Description: A segmentation violation was discovered in GPAC via the function BD CheckSFTimeOffset at /bifs/field decode.c. Recommendations: For GPAC version 2.1-DEV-rev368-gfd054169b-master,...

PT-2018-10781 · Libyal · Libpff

Name of the Vulnerable Software and Affected Versions: libpff versions through 2018-04-28 Description: The issue allows remote attackers to cause an information disclosure via a crafted pff file. This is due to a heap-based buffer over-read in the libpff name to id map entry read function in libp...

PT-2017-3908 · Freeware +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.7 Description: The issue is related to the mp4ff read stco function, which can lead to a denial of service due to excessive CPU consumption caused by a large loop. This can be triggered by a...

PT-2017-3905 · Faad2 +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: FAAD2 version 2.7 Description: The issue is related to the mp4ff parse tag function, which can lead to a denial of service due to an infinite loop and CPU consumption when processing a crafted mp4 file. This allows remote attackers to exploit...

PT-2017-19291 · Lrzip +1 · Lrzip +1

Name of the Vulnerable Software and Affected Versions: lrzip version 0.631 Description: A stack buffer overflow was found in the get fileinfo function in lrzip.c, which allows attackers to cause a denial of service via a crafted file. Recommendations: For lrzip version 0.631, as a temporary...

PT-2017-3260

Name of the Vulnerable Software and Affected Versions libxml2 version 20904-GITv2.9.4-16-g0741801 Description The issue is caused by a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This can cause programs that use libxml2, such as PHP, to crash. The problem exists d...

PT-2017-4258 · Gnome +5 · Libcroco +5

Name of the Vulnerable Software and Affected Versions: libcroco version 0.6.12 Description: The issue is related to the cr tknzr parse comment function in the cr-tknzr.c component of the libcroco library, which can cause a denial of service due to a memory allocation error when processing a craft...

PT-2017-17955 · Gnu +2 · Gnu Osip +2

Name of the Vulnerable Software and Affected Versions: GNU oSIP versions 4.1.0 through 5.0.0 Description: A malformed SIP message can cause a heap buffer overflow in the msg osip body parse function, leading to a remote denial of service. This issue is related to the osip message parse.c file in...

Fantastico Multiple Vulnerabilities

Exploit for php platform in category web applications Title: Fantastico Multi Vulnerability Author: RAB3OUN Vendor Homepage: https://netenberg.com Software Link: https://netenberg.com/fantastico.php Version:All Bypass Safemode and Disablefunction 1 -------- exploit in index.php include...