Buffer Overflow Vulnerabilities in QtBase Module: Remote Code Execution

Buffer Overflow Vulnerabilities in QtBase Module: Remote Code Execution

CVE-2015-1859 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Multiple buffer overflows in plugins/imageformats/ico/qicohandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service (segmentation fault and crash) and possibly execute arbitrary code via a crafted ICO image.

Learn more about our Web Application Penetration Testing UK.