Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A heap-based buffer overflow vulnerability exists in the Palette box parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
Off-by-one错误
Vulnerability Title
Accusoft ImageGear 缓冲区错误漏洞
Vulnerability Description
Accusoft ImageGear是美国Accusoft公司的一款用于图像处理的软件开发工具包(SDK)。 Accusoft ImageGear存在安全漏洞,该漏洞源于Palette box解析器功能中的差一错误。攻击者可利用该漏洞发送一个特别制作的文件,触发一个差一错误,并在目标系统上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A