#VU43838 Buffer overflow in OpenJPEG - CVE-2012-3358

Cybersecurity Help s.r.o.

Published: 2012-07-19 | Updated: 2020-08-11

Vulnerability identifier: #VU43838

Vulnerability risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2012-3358

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
OpenJPEG
Universal components / Libraries / Libraries used by multiple products

Vendor: openjpeg.org

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Multiple heap-based buffer overflows in the j2k_read_sot function in j2k.c in OpenJPEG 1.5 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted (1) tile number or (2) tile length in a JPEG 2000 image file.

Mitigation
Install update from vendor's website.

Vulnerable software versions

OpenJPEG: 1.5

External links
https://code.google.com/p/openjpeg/source/detail?r=1727
https://osvdb.org/83741
https://rhn.redhat.com/errata/RHSA-2012-1068.html
https://secunia.com/advisories/49913
https://www.mandriva.com/security/advisories?name=MDVSA-2012:104
https://www.openwall.com/lists/oss-security/2012/07/11/1
https://www.securityfocus.com/bid/54373
https://exchange.xforce.ibmcloud.com/vulnerabilities/76850

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Gentoo update for OpenJPEG

Amazon Linux AMI update for openjpeg

Multiple vulnerabilities in OpenJPEG