Denial of Service Vulnerability in GStreamer qtdemux_tag_add_str_full Function

Denial of Service Vulnerability in GStreamer qtdemux_tag_add_str_full Function

CVE-2016-10199 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The qtdemux_tag_add_str_full function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted tag value.

Learn more about our Web Application Penetration Testing UK.