Arbitrary Code Execution and Denial of Service Vulnerability in STDU Viewer 1.6.375 via Crafted .jb2 File

Arbitrary Code Execution and Denial of Service Vulnerability in STDU Viewer 1.6.375 via Crafted .jb2 File

CVE-2017-14295 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Data from Faulting Address controls Code Flow starting at STDUJBIG2File+0x00000000000015e9."

Learn more about our Web Application Penetration Testing UK.