libwmf CVE-2015-4696 Multiple Heap Buffer Overflow Vulnerabilities

libwmf is prone to multiple heap-based buffer-overflow vulnerabilities because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.

Attackers may leverage these issues to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

libwmf 0.2-7 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus