Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
LScube Feng 0.1.15 and earlier allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via (1) a malformed Transport header, which triggers misparsing in parse_transport_header in RTSP_setup.c, as demonstrated by a Transport header that contains only a "RTP/AVP;unicast;client_port" sequence; or (2) a malformed Range header, which triggers misparsing in parse_play_time_range in RTSP_Play, as demonstrated by an empty Range header.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LScube Feng RTSP_setup.c和parse_play_time_range 拒绝服务攻击漏洞
Vulnerability Description
LScube Feng 0.1.15以及更早的版本允许远程攻击者借助于(1)一个会导致RTSP_setup.c中parse_transport_header无解的畸形的Transport页眉或(2)一个会导致RTSP_Play中parse_play_time_range无解的畸形的Range页眉来引起拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A