Live555 up to and including 1.08 does not handle socket connections properly. A huge number of incoming socket connections in a short time invokes the error-handling module, in which a heap-based buffer overflow happens. An attacker can leverage this to launch a DoS attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
live555 live555 |