Vulnerabilities > CVE-2017-14638 - NULL Pointer Dereference vulnerability in Bento4 1.5.0617
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
AP4_AtomFactory::CreateAtomFromStream in Core/Ap4AtomFactory.cpp in Bento4 version 1.5.0-617 has missing NULL checks, leading to a NULL pointer dereference, segmentation fault, and application crash in AP4_Atom::SetType in Core/Ap4Atom.h.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |