Описание
Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ICC profile in a JPG file.
Ссылки
- Exploit
- PatchVendor Advisory
- Vendor Advisory
- Vendor Advisory
- ExploitPatch
- Vendor Advisory
- Exploit
- PatchVendor Advisory
- Vendor Advisory
- Vendor Advisory
- ExploitPatch
Уязвимые конфигурации
Конфигурация 1Версия до 1.14 (включая)
Одно из
cpe:2.3:a:littlecms:lcms:*:*:*:*:*:*:*:*
cpe:2.3:a:littlecms:lcms:1.07:*:*:*:*:*:*:*
cpe:2.3:a:littlecms:lcms:1.08:*:*:*:*:*:*:*
cpe:2.3:a:littlecms:lcms:1.09:*:*:*:*:*:*:*
cpe:2.3:a:littlecms:lcms:1.10:*:*:*:*:*:*:*
cpe:2.3:a:littlecms:lcms:1.11:*:*:*:*:*:*:*
cpe:2.3:a:littlecms:lcms:1.12:*:*:*:*:*:*:*
cpe:2.3:a:littlecms:lcms:1.13:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.14965
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
ubuntu
больше 18 лет назад
Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ICC profile in a JPG file.
debian
больше 18 лет назад
Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows re ...
github
больше 3 лет назад
Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ICC profile in a JPG file.
EPSS
Процентиль: 94%
0.14965
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119