Buffer Overflow Vulnerabilities in QtBase Module: Remote Code Execution via Crafted BMP Image

Buffer Overflow Vulnerabilities in QtBase Module: Remote Code Execution via Crafted BMP Image

CVE-2015-1858 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Multiple buffer overflows in gui/image/qbmphandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault and crash) and possibly execute arbitrary code via a crafted BMP image.

Learn more about our Web Application Penetration Testing UK.