← volver
CVE-2021-41396

CVE-2021-41396

EPSS 1.2%
Live555 through 1.08 does not handle socket connections properly. A huge number of incoming socket connections in a short time invokes the error-handling module, in which a heap-based buffer overflow happens. An attacker can leverage this to launch a DoS attack.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lists.live555.com/pipermail/live-devel/2021-September/021994.htmlhttp://www.live555.com/liveMedia/public/changelog.txt