Chasys Draw IES Stack-based Buffer Overflow in ReadFile Function

Chasys Draw IES Stack-based Buffer Overflow in ReadFile Function

CVE-2013-3928 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Stack-based buffer overflow in the ReadFile function in flt_BMP.dll in Chasys Draw IES before 4.11.02 allows remote attackers to execute arbitrary code via crafted biPlanes and biBitCount fields in a BMP file.

Learn more about our Web Application Penetration Testing UK.