5
CVSSv2

CVE-2019-7733

Published: 11/02/2019 Updated: 12/02/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 483
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.

Vulnerability Trend

Affected Products

Vendor Product Versions
Live555Streaming Media0.95

Vendor Advisories

In Live555 095, a setup packet can cause a memory leak leading to DoS because, when there are multiple instances of a single field (username, realm, nonce, uri, or response), only the last instance can ever be freed ...