CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-12476

The AP4_AvccAtom::InspectFields function in Core/Ap4AvccAtom.cpp in Bento4 mp4dump before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.0%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

https://drive.google.com/open?id=0B6wBkDmxMGMKUjNscThnbTlSZ2s
https://drive.google.com/open?id=0B9DojFnTUSNGZ1JfNUc1am9pcnc
https://github.com/axiomatic-systems/Bento4/commit/4d3f0bebd5f8518fd775f671c12bea58c68e814e
https://drive.google.com/open?id=0B6wBkDmxMGMKUjNscThnbTlSZ2s
https://drive.google.com/open?id=0B9DojFnTUSNGZ1JfNUc1am9pcnc
https://github.com/axiomatic-systems/Bento4/commit/4d3f0bebd5f8518fd775f671c12bea58c68e814e

Products affected by CVE-2017-12476

Bento4 » Bento4 » Version: Any

cpe:2.3:a:bento4:bento4:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12476

Products

Pricing

Contact Us