CVE-2017-14643 in Bento4info

Summary

The AP4_HdlrAtom class in Core/Ap4HdlrAtom.cpp in Bento4 version 1.5.0-617 uses an incorrect character data type, leading to a heap-based buffer over-read and application crash in AP4_BytesToUInt32BE in Core/Ap4Utils.h.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

09/21/2017

Disclosure

09/21/2017

Moderation

VulDB entry created

Entries

VDB-106979 (1)

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

6.4

EPSS

0.00534

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-14643
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-14643
CVE Details	https://www.cvedetails.com/cve/CVE-2017-14643/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!