Remote Denial of Service Vulnerability in JasPer 2.0.12: Assertion Abort in jpc_dec_process_siz()

CVE-2017-13746 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

There is a reachable assertion abort in the function jpc_dec_process_siz() in jpc/jpc_dec.c:1297 in JasPer 2.0.12 that will lead to a remote denial of service attack.

Learn more about our Web Application Penetration Testing UK.