Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Interpretation conflict in LScube Feng 0.1.15 and earlier allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a User-Agent header line that contains a carriage-return character, which is considered a line delimiter when the header is split into individual lines, but not when log_user_agent in RTSP_utils.c parses the content of the User-Agent line.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LScube Feng拒绝服务攻击漏洞
Vulnerability Description
LScube Feng 0.1.15以及更早版本的解释冲突允许远程攻击者发起拒绝服务攻击(NULL废弃和守护进程崩溃),此拒绝服务攻击时借助一个用户-代理页眉线造成服务拒绝。该页眉线有回车符,当页眉被分成单独的行时,它被认为是分隔符;当RTSP_utils.c中的注册-用户-代理求解用户-代理行的内容时,它就不被认为是分隔符。
CVSS Information
N/A
Vulnerability Type
N/A