CVE-2013-4290

HIGH

Description

Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib/openjp3d/event.c.

References

http://openjpeg.googlecode.com/svn/tags/version.1.5.2/NEWS

http://seclists.org/oss-sec/2013/q3/593

http://secunia.com/advisories/57285

http://www.securityfocus.com/bid/62362

Details

Source: MITRE

Published: 2014-04-18

Updated: 2016-12-31

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 10

Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C)

Impact Score: 10

Exploitability Score: 10

Severity: HIGH