Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
live555 media server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6036
The parseRTSPRequestString function in LIVE555 Media Server 2007.11.01 and previous versions allows remote malicious users to cause a denial of service (daemon crash) via a short RTSP query, which causes a negative number to be used during memory allocation.
Live555 Media Server
1 EDB exploit
9.8
CVSSv3
CVE-2019-6256
A Denial of Service issue exists in the LIVE555 Streaming Media libraries as used in Live555 Media Server 0.93. It can cause an RTSPServer crash in handleHTTPCmd_TunnelingPOST, when RTSP-over-HTTP tunneling is supported, via x-sessioncookie HTTP headers in a GET request and a POS...
Live555 Live555 Media Server 0.93
Debian Debian Linux 8.0
Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2018-4013
An exploitable code execution vulnerability exists in the HTTP packet-parsing functionality of the LIVE555 RTSP server library version 0.92. A specially crafted packet can cause a stack-based buffer overflow, resulting in code execution. An attacker can send a packet to trigger t...
Live555 Live555 Media Server 0.92
Debian Debian Linux 8.0
Debian Debian Linux 9.0
4 Github repositories
9.8
CVSSv3
CVE-2019-7314
liblivemedia in Live555 prior to 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a Use-After-Free error that causes the RTSP server to crash (Segmentation fault) or possibly have unspecified other impact.
Live555 Streaming Media
Debian Debian Linux 8.0
10 Github repositories
9.8
CVSSv3
CVE-2020-24027
In Live Networks, Inc., liblivemedia version 20200625, there is a potential buffer overflow bug in the server handling of a RTSP "PLAY" command, when the command specifies seeking by absolute time.
Live555 Liblivemedia 20200625
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started