202115 Feb
Vigil@nce - OpenEXR: buffer overflow via writeTileData
Type
General News
Source
Globalsecuritymag
Summary

This bulletin was written by Vigil@nce : https://vigilance.fr/?langue=2 Consequences: user access/rights, denial of service on service, denial of service on client. An attacker can trigger a buffer overflow via writeTileData() of OpenEXR, in order to trigger a denial of service, and possibly to run code.

Classifications
  • Security
  • HealthTech
  • General Healthcare software
  • Security Software
  • Data Management