Excessive Memory Allocation Vulnerability in Bento4 1.5.1-627

Excessive Memory Allocation Vulnerability in Bento4 1.5.1-627

CVE-2018-20659 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

An issue was discovered in Bento4 1.5.1-627. The AP4_StcoAtom class in Core/Ap4StcoAtom.cpp has an attempted excessive memory allocation when called from AP4_AtomFactory::CreateAtomFromStream in Core/Ap4AtomFactory.cpp, as demonstrated by mp42hls.

Learn more about our Web Application Penetration Testing UK.