CVE-2013-3480

CVE-2013-3480

EPSS 4.3%

Integer overflow in Sagelight 4.4 and earlier allows remote attackers to execute arbitrary code via crafted width and height dimensions in a BMP file, which triggers a heap-based buffer overflow.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://secunia.com/advisories/52705 https://exchange.xforce.ibmcloud.com/vulnerabilities/85920 http://www.securityfocus.com/bid/61408