Invalid Memory Read Vulnerability in AP4_SampleDescription::GetFormat() in Bento4 1.5.1-624

CVE-2018-14544 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

There exists one invalid memory read bug in AP4_SampleDescription::GetFormat() in Ap4SampleDescription.h in Bento4 1.5.1-624, which can allow attackers to cause a denial-of-service via a crafted mp4 file. This vulnerability can be triggered by the executable mp42ts.

Learn more about our Web Application Penetration Testing UK.