Lucene search
K

8 matches found

NVD
NVD
added 6 days ago11 views

CVE-2026-36908

A stack overflow in the AP4Array::EnsureCapacity component of axiomatic-systems Bento4 before v1.8.9allows attackers to cause a Denial of Service DoS via a crafted MP4 file...

5.5CVSS0.00142EPSS
Exploits0References3
CVE
CVE
added 6 days ago7 views

CVE-2026-36908

CVE-2026-36908 affects Bento4 prior to v1.8.9, where a stack overflow in AP4_Array::EnsureCapacity can lead to DoS via a crafted MP4 file. The available documents confirm the component and impact but do not provide explicit remediation steps or exploitation details. Further details on fixes are n...

5.5CVSS5.8AI score0.00142EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/04/11 12:0 a.m.8 views

Bento4 缓冲区错误漏洞

Bento4 is an open source C++ library for reading and writing MP4 files. A denial of service vulnerability exists in Bento4 version v1.6.0-639, which stems from the AP4TrunAtom::SetDataOffsetint function in Ap4TrunAtom.h containing a segmentation violation. An attacker can exploit this vulnerabili...

5.5CVSS5.4AI score0.00291EPSS
Exploits1References3
OSV
OSV
added 2021/08/25 7:15 p.m.1 views

DEBIAN-CVE-2021-21850

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow when the library encounters an atom using the “trun” FOURCC code due to unchecked...

8.8CVSS8.4AI score0.01695EPSS
Exploits1References1
OSV
OSV
added 2021/08/25 7:15 p.m.1 views

UBUNTU-CVE-2021-21850

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow when the library encounters an atom using the “trun” FOURCC code due to unchecked...

8.8CVSS7.6AI score0.01695EPSS
Exploits1References5
OSV
OSV
added 2019/09/16 1:15 p.m.1 views

UBUNTU-CVE-2019-16349

Bento4 1.5.1-628 has a NULL pointer dereference in AP4ByteStream::ReadUI32 in Core/Ap4ByteStream.cpp when called from the AP4TrunAtom class...

5.5CVSS6.1AI score0.00852EPSS
Exploits1References3
securityvulns
securityvulns
added 2011/08/17 12:0 a.m.56 views

ZDI-11-254: Apple QuickTime 'trun' atom sampleCount Integer Overflow Remote Code Execution Vulnerability

ZDI-11-254: Apple QuickTime 'trun' atom sampleCount Integer Overflow Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-254 August 16, 2011 -- CVE ID: CVE-2011-0256 -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P -- Affected Vendors: Apple -- Affected Products: Apple...

9.3CVSS0.8AI score0.03682EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
added 2011/08/16 12:0 a.m.33 views

Apple QuickTime 'trun' atom sampleCount Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...

7.5CVSS2.6AI score0.03682EPSS
Exploits1References1
Rows per page
Query Builder