Main Vulnerability Database Vulnerabilities #VU36712

Buffer overflow in ImageWorsener - CVE-2018-16782

Published: September 10, 2018 / Updated: August 8, 2020

Vulnerability identifier: #VU36712

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2018-16782

CWE-ID: CWE-119

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Jason Summer

Affected software:
ImageWorsener

Detailed vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary. A remote attacker can create a specially crafted file, trick the victim into opening it with the affected software, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

How to mitigate CVE-2018-16782

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Sources

https://github.com/jsummers/imageworsener/issues/35

Buffer overflow in ImageWorsener - CVE-2018-16782

Detailed vulnerability description

How to mitigate CVE-2018-16782

Sources

Please verify you're human