Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a space character at the beginning of an RTSP message, which triggers an integer underflow, infinite loop, and buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-6933.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Live Networks Live555 Streaming Media 数字错误漏洞
Vulnerability Description
Live Networks Live555 Streaming Media是美国Live Networks公司的一个为流媒体提供解决方案的跨平台C++开源项目,它实现了对如RTP/RTCP、RTSP、SIP等标准流媒体传输协议的支持。 VideoLAN VLC Media Player中使用的Live Networks Live555 Streaming Media 2013.11.26版本中的‘parseRTSPRequestString’函数中存在漏洞。远程攻击者可借助以空格或换行字符作为开头的RTS
CVSS Information
N/A
Vulnerability Type
N/A