Описание
A vulnerability classified as critical has been found in Axiomatic Bento4 up to 1.6.0. This affects the function AP4_BitReader::ReadBits of the component mp42aac. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Ссылки
- Exploit
- Exploit
- Permissions RequiredVDB Entry
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
EPSS
6.3 Medium
CVSS3
6.5 Medium
CVSS3
7.5 High
CVSS2
Дефекты
Связанные уязвимости
A vulnerability classified as critical has been found in Axiomatic Bento4 up to 1.6.0. This affects the function AP4_BitReader::ReadBits of the component mp42aac. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Уязвимость компонента mp42aac функции AP4_BitReader::ReadBits библиотеки чтения и записи файлов ISO-MP4 Bento4, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.3 Medium
CVSS3
6.5 Medium
CVSS3
7.5 High
CVSS2