CVE-2013-3480

CVE-2013-3480

EPSS 4.3%

Integer overflow in Sagelight 4.4 and earlier allows remote attackers to execute arbitrary code via crafted width and height dimensions in a BMP file, which triggers a heap-based buffer overflow.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://secunia.com/advisories/52705 https://exchange.xforce.ibmcloud.com/vulnerabilities/85920 http://www.securityfocus.com/bid/61408