Описание
Integer signedness error in certain older versions of the NeL library, as used in Mtp-Target 1.2.2 and earlier, and possibly other products, allows remote attackers to cause a denial of service (memory consumption or server crash) via a negative value in a STLport call, which is not caught by a signed comparison.
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.2 (включая)
cpe:2.3:a:mtp-target:mtp-target:*:*:*:*:*:*:*:*
EPSS
Процентиль: 90%
0.05902
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Integer signedness error in certain older versions of the NeL library, as used in Mtp-Target 1.2.2 and earlier, and possibly other products, allows remote attackers to cause a denial of service (memory consumption or server crash) via a negative value in a STLport call, which is not caught by a signed comparison.
EPSS
Процентиль: 90%
0.05902
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other