Uclouvain: >> Openjpeg >> 1.1 Security Vulnerabilities
Heap-based buffer overflow in OpenJPEG 1.5.0 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted JPEG2000 file.
CVSS Score
6.8
EPSS Score
0.06
Published
2012-09-05
The JPEG 2000 codec (jp2.c) in OpenJPEG before 1.5 allows remote attackers to execute arbitrary code via a crafted palette index in a CMAP record of a JPEG image, which triggers memory corruption, aka "out-of heap-based buffer write."
CVSS Score
9.3
EPSS Score
0.038
Published
2012-04-11
Page 5