CVE-2019-7733

Name of the Vulnerable Software and Affected Versions Live555 version 0.95

Description The issue is related to a buffer overflow caused by a large integer in a Content-Length HTTP header. This occurs because the handleRequestBytes function has an unrestricted memmove. The vulnerability can be exploited by a remote attacker to cause a denial of service.

Recommendations For Live555 version 0.95, consider restricting the use of the handleRequestBytes function until a patch is available to prevent potential buffer overflow attacks. Additionally, limiting the size of integers accepted in the Content-Length HTTP header can help mitigate the risk of exploitation.