📦 Bento4

CVE-2024-31004 is a critical remote code execution vulnerability in Bento4's MP4 fragment parsing functionality. An attacker can exploit this by sending a specially crafted MP4 file to execute arbitra...

A buffer overflow vulnerability in Bento4 v1.6.0-641 allows remote attackers to execute arbitrary code via the AP4 BitReader::ReadCache() function. This affects any application using the vulnerable Be...

A buffer overflow vulnerability in Bento4 v1.6.0-641 allows local attackers to execute arbitrary code via the AP4_Stz2Atom component. This affects systems running vulnerable versions of Bento4, partic...

A buffer overflow vulnerability in Bento4 v1.6.0-641 allows local attackers to execute arbitrary code by crafting a malicious MP4 file and processing it with mp4fragment. This affects systems running ...

This vulnerability is a heap-use-after-free flaw in Bento4 v1.6.0-641-2-g1529b83 that occurs during destruction of AP4_UnknownAtom objects. It allows attackers to cause denial of service by crashing a...

A heap-use-after-free vulnerability in Bento4 v1.6.0-641-2-g1529b83 allows attackers to cause denial of service by triggering memory corruption in the AP4_Sample::GetOffset() function. This affects sy...

This vulnerability in Bento4's AP4_CttsAtom class allows remote attackers to cause denial of service through application crashes by triggering memory allocation failures. It affects systems using Bent...

A NULL pointer dereference vulnerability in Bento4's AP4_Stz2Atom::GetSampleSize function allows attackers to cause denial of service by crashing the application. This affects systems using vulnerable...

A heap-based buffer overflow vulnerability exists in Bento4's AP4_StdcFileByteStream::ReadPartial component, allowing attackers to cause denial of service (DoS) by crashing the application. This affec...

This vulnerability in Bento4's AP4_NullTerminatedStringAtom component allows attackers to cause a segmentation fault via improper memory write access. It affects systems using vulnerable versions of B...

A memory leak vulnerability in Bento4's mp4fragment tool allows attackers to cause information disclosure by processing specially crafted invalid MP4 files. This affects systems using Bento4 v1.6.0-64...

This vulnerability in Bento4 v1.6.0-641 allows attackers to read sensitive information from memory through improper handling of MP4 files. It affects applications using Bento4 for MP4 processing, part...

This vulnerability in Bento4 v1.6.0-641 allows attackers to cause a segmentation fault (crash) by providing a specially crafted MP4 file to the mp4encrypt tool. This affects systems using Bento4 for M...

A critical heap-based buffer overflow vulnerability in Axiomatic Bento4's mp42aac component allows remote attackers to execute arbitrary code or cause denial of service. This affects all users of Bent...