Vulnerabilities
Vulnerable Software
Axiosys:  >> Bento4  >> 1.5.1.0  Security Vulnerabilities
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer overflow in the AP4_RtpAtom class at Core/Ap4RtpAtom.cpp.
CVSS Score
8.8
EPSS Score
0.004
Published
2019-08-14
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the AP4_Dec3Atom class at Core/Ap4Dec3Atom.cpp.
CVSS Score
8.8
EPSS Score
0.004
Published
2019-08-14
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the AP4_AvccAtom class at Core/Ap4AvccAtom.cpp.
CVSS Score
8.8
EPSS Score
0.004
Published
2019-08-14
An issue was discovered in Bento4 1.5.1.0. A memory allocation failure is unhandled in Core/Ap4SdpAtom.cpp and leads to crashes. When parsing input video, the program allocates a new buffer to parse an atom in the stream. The unhandled memory allocation failure causes a direct copy to a NULL pointer.
CVSS Score
7.5
EPSS Score
0.009
Published
2019-07-04
The AP4_FtypAtom class in Core/Ap4FtypAtom.cpp in Bento4 1.5.1.0 has an Infinite loop via a crafted MP4 file that triggers size mishandling.
CVSS Score
7.8
EPSS Score
0.002
Published
2018-01-05


Contact Us

Shodan ® - All rights reserved