Infinite Loop Vulnerability in Bento4 1.5.1.0's AP4_FtypAtom Class

Infinite Loop Vulnerability in Bento4 1.5.1.0's AP4_FtypAtom Class

CVE-2018-5253 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The AP4_FtypAtom class in Core/Ap4FtypAtom.cpp in Bento4 1.5.1.0 has an Infinite loop via a crafted MP4 file that triggers size mishandling.

Learn more about our Web Application Penetration Testing UK.