← back
CVE-2021-41396

CVE-2021-41396

EPSS 1.2%
Live555 through 1.08 does not handle socket connections properly. A huge number of incoming socket connections in a short time invokes the error-handling module, in which a heap-based buffer overflow happens. An attacker can leverage this to launch a DoS attack.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.live555.com/pipermail/live-devel/2021-September/021994.htmlhttp://www.live555.com/liveMedia/public/changelog.txt