OpenJPEG Multiple Security Vulnerabilities

OpenJPEG is prone to the following vulnerabilities:

1. Multiple denial-of-service vulnerabilities
2. An integer-overflow vulnerability

Attackers can exploit these issues to cause the application to crash or execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause denial-of-service conditions.

OpenJPEG version 2.3.0 and prior are vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus