CVE-2012-3358

Loading...

General

Score:10.0/10.0
Severity:High
Category:Buffer Error

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Relative vulnerabilities

CVE-2009-5030, CVE-2012-3535

Published on 19/07/12 - Updated on 29/08/17

Description

Multiple heap-based buffer overflows in the j2k_read_sot function in j2k.c in OpenJPEG 1.5 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted (1) tile number or (2) tile length in a JPEG 2000 image file.

Category: Buffer Error

CWE-119 (Buffer Errors)
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Security Notices

US National Vulnerability DatabaseCVE-2012-3358
Amazon Linux ALAS-2012-111
CentOS CESA-2012:1068
Debian DSA-2629-1
Oracle Linux ELSA-2012-1068
Redhat RHSA-2012:1068

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
openjpegopenjpeg

Share this vulnerability with:

Twitter Facebook LinkedIn Mail