Stack-based Buffer Overflow in LuraWave JP2 ActiveX Control Allows Remote Code Execution

Stack-based Buffer Overflow in LuraWave JP2 ActiveX Control Allows Remote Code Execution

CVE-2012-0977 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Stack-based buffer overflow in jp2_x.dll in LuraWave JP2 ActiveX Control 2.1.5.5 and other versions before 2.1.5.11 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.

Learn more about our Web Application Penetration Testing UK.