CVE-2007-6036

N/A Unknown

Published: November 20, 2007 Modified: April 23, 2026

Description

The parseRTSPRequestString function in LIVE555 Media Server 2007.11.01 and earlier allows remote attackers to cause a denial of service (daemon crash) via a short RTSP query, which causes a negative number to be used during memory allocation.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://aluigi.altervista.org/adv/live555x-adv.txt

Source: cve@mitre.org

Exploit

http://secunia.com/advisories/27711

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/29356

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200803-22.xml

Source: cve@mitre.org

http://www.live555.com/liveMedia/public/changelog.txt

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/483910/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/26488

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/3939

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/38542

Source: cve@mitre.org

http://aluigi.altervista.org/adv/live555x-adv.txt