Main Vulnerability Database Vulnerabilities #VU14624

Integer overflow in Little CMS - CVE-2018-16435

Published: September 5, 2018 / Updated: September 5, 2018

Vulnerability identifier: #VU14624

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Amber

CVE-ID: CVE-2018-16435

CWE-ID: CWE-190

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Little CMS

Affected software:
Little CMS

Detailed vulnerability description

The vulnerability allows a remote attacker to cause DoS condition or execute arbitrary code on the target system.

The vulnerability exists due to integer overflow in the AllocateDataSet function in cmscgats.c when handling malicious input. A remote unauthenticated attacker can supply a specially crafted file in the second argument to cmsIT8LoadFromFile, trigger heap-based buffer overflow in the SetData function and cause the service to crash or execute arbitrary code with elevated prvileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

How to mitigate CVE-2018-16435

Install update from vendor's website.

Sources

https://github.com/mm2/Little-CMS/issues/171

Integer overflow in Little CMS - CVE-2018-16435

Detailed vulnerability description

How to mitigate CVE-2018-16435

Sources

Please verify you're human