← Back

Live555

live555

24 CVEs • 5 products

Products (5)

Click to collapse
Toggle
Streaming Media
streaming_media
13 CVEs
Live555
live555
7 CVEs
Live555 Media Server
live555_media_server
2 CVEs
Media Server
media_server
1 CVE
Liblivemedia
liblivemedia
1 CVE

CVEs (24)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-4013
2Debian
Live555
2Debian Linux
Live555 Media Server
Nov 21, 2024
Oct 19, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An exploitable code execution vulnerability exists in the HTTP packet-parsing functionality of the LIVE555 RTSP server library version 0.92. A specially crafted packet can cause a stack-based buffer overflow, resulting i...Show more
An exploitable code execution vulnerability exists in the HTTP packet-parsing functionality of the LIVE555 RTSP server library version 0.92. A specially crafted packet can cause a stack-based buffer overflow, resulting in code execution. An attacker can send a packet to trigger this vulnerability.Show less
CVE-2013-6934
2Live555
Videolan
2Streaming Media
Vlc Media Player
Apr 29, 2026
Jan 23, 2014
N/A· v4
N/A· v3
7.5 HIGH· v2
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary c...Show more
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a space character at the beginning of an RTSP message, which triggers an integer underflow, infinite loop, and buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-6933.Show less
CVE-2013-6933
1Live555
1Streaming Media
Apr 29, 2026
Jan 23, 2014
N/A· v4
N/A· v3
7.5 HIGH· v2
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2011.08.13 through 2013.11.25, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibly...Show more
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2011.08.13 through 2013.11.25, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a (1) space or (2) tab character at the beginning of an RTSP message, which triggers an integer underflow, infinite loop, and buffer overflow.Show less
CVE-2007-6036
1Live555
1Media Server
Apr 23, 2026
Nov 20, 2007
N/A· v4
N/A· v3
7.1 HIGH· v2
The parseRTSPRequestString function in LIVE555 Media Server 2007.11.01 and earlier allows remote attackers to cause a denial of service (daemon crash) via a short RTSP query, which causes a negative number to be used dur...Show more
The parseRTSPRequestString function in LIVE555 Media Server 2007.11.01 and earlier allows remote attackers to cause a denial of service (daemon crash) via a short RTSP query, which causes a negative number to be used during memory allocation.Show less