GPAC is vulnerable to arbitrary code execution. A buffer overflow vulnerability occurs in the cat_multiple_files
function in applications/mp4box/fileimport.c
when MP4Box is used for a local directory containing crafted filenames. This allows an attacker to execute arbitrary code on the host OS.
CPE | Name | Operator | Version |
---|---|---|---|
gpac:xenial | eq | 0.5.2 | |
gpac:xenial | eq | 0.5.2 |