|
256341
|
8.8 |
HIGH
Network
|
bento4
|
bento4
|
A heap-based buffer overflow was discovered in the AP4_HdlrAtom class in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code ex…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14644
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256342
|
6.5 |
MEDIUM
Network
|
bento4
|
bento4
|
The AP4_HdlrAtom class in Core/Ap4HdlrAtom.cpp in Bento4 version 1.5.0-617 uses an incorrect character data type, leading to a heap-based buffer over-read and application crash in AP4_BytesToUInt32BE…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14643
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256343
|
6.5 |
MEDIUM
Network
|
bento4
|
bento4
|
A NULL pointer dereference was discovered in the AP4_HdlrAtom class in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash in AP4_StdcFileByteStream::ReadPar…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14642
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256344
|
6.5 |
MEDIUM
Network
|
bento4
|
bento4
|
A NULL pointer dereference was discovered in the AP4_DataAtom class in MetaData/Ap4MetaData.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash, which…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14641
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256345
|
6.5 |
MEDIUM
Network
|
bento4
|
bento4
|
A NULL pointer dereference was discovered in AP4_AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application c…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14640
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256346
|
8.8 |
HIGH
Network
|
bento4
|
bento4
|
AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617 uses incorrect character data types, which causes a stack-based buffer underflow and out-of-bounds write, leading to d…
|
CWE-843
Type Confusion
|
CVE-2017-14639
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256347
|
6.5 |
MEDIUM
Network
|
bento4
|
bento4
|
AP4_AtomFactory::CreateAtomFromStream in Core/Ap4AtomFactory.cpp in Bento4 version 1.5.0-617 has missing NULL checks, leading to a NULL pointer dereference, segmentation fault, and application crash …
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14638
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256348
|
8.8 |
HIGH
Network
|
otrs
|
otrs
|
In Open Ticket Request System (OTRS) 3.3.x before 3.3.18, 4.x before 4.0.25, and 5.x before 5.0.23, remote authenticated users can leverage statistics-write permissions to gain privileges via code in…
|
CWE-20
Improper Input Validation
|
CVE-2017-14635
|
2024-11-21 12:13 |
2017-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256349
|
6.5 |
MEDIUM
Network
|
libsndfile_project
debian
|
libsndfile
debian_linux
|
In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.
|
CWE-369
Divide By Zero
|
CVE-2017-14634
|
2024-11-21 12:13 |
2017-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256350
|
6.5 |
MEDIUM
Network
|
xiph.org
debian
canonical
|
libvorbis
debian_linux
ubuntu_linux
|
In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability exists in the function mapping0_forward() in mapping0.c, which may lead to DoS when operating on a crafted audio file with vorbi…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14633
|
2024-11-21 12:13 |
2017-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
