Описание
GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulnerability in src/isomedia/avc_ext.c lines 2417 to 2420 that can result in Heap chunks being modified, this could lead to RCE. This attack appear to be exploitable via an attacker supplied MP4 file that when run by the victim may result in RCE.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | released | 0.5.2-426-gc5ad4e4+dfsg5-3ubuntu0.1 |
| cosmic | released | 0.5.2-426-gc5ad4e4+dfsg5-4ubuntu0.1 |
| devel | DNE | |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | released | 0.5.2-426-gc5ad4e4+dfsg5-3ubuntu0.1 |
| esm-apps/focal | needed | |
| esm-apps/jammy | needed | |
| esm-apps/noble | needed |
Показывать по
6.8 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulnerability in src/isomedia/avc_ext.c lines 2417 to 2420 that can result in Heap chunks being modified, this could lead to RCE. This attack appear to be exploitable via an attacker supplied MP4 file that when run by the victim may result in RCE.
GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulne ...
GPAC MP4Box version 0.7.1 and earlier contains a Buffer Overflow vulnerability in src/isomedia/avc_ext.c lines 2417 to 2420 that can result in Heap chunks being modified, this could lead to RCE. This attack appear to be exploitable via an attacker supplied MP4 file that when run by the victim may result in RCE.
Уязвимость мультимедийной платформы GPAC, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю выполнить произвольный код
6.8 Medium
CVSS2
7.8 High
CVSS3