Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A buffer overflow in OpenJPEG 2.1.1 causes arbitrary code execution when parsing a crafted image. An exploitable code execution vulnerability exists in the jpeg2000 image file format parser as implemented in the OpenJpeg library. A specially crafted jpeg2000 file can cause an out of bound heap write resulting in heap corruption leading to arbitrary code execution. For a successful attack, the target user needs to open a malicious jpeg2000 file. The jpeg2000 image file format is mostly used for embedding images inside PDF documents and the OpenJpeg library is used by a number of popular PDF renderers making PDF documents a likely attack vector.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenJPEG 缓冲区错误漏洞
Vulnerability Description
OpenJPEG是一款基于C语言的开源JPEG 2000编码解码器。 OpenJPEG 2.1.1版本中存在缓冲区溢出漏洞。攻击者可通过解析特制的jpeg2000文件造成越边界堆写入,导致任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A