CVE-2019-7733

2019-02-11 18:29:00 2019-02-12 15:48:30

In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Live555 Streaming media 0.95 (not an official CPE)

Live555 - Streaming media

Advisory	Patch	Confirmed	Link
			https://github.com/rgaufman/live555/issues/21

Integer Overflow or Wraparound (ID 190)

Related CAPEC 1 Forced Integer Overflow (CAPEC-ID 92)