Heap-based Buffer Overflow in EXTRACTOR_png_extract_method in GNU Libextractor 1.4

Heap-based Buffer Overflow in EXTRACTOR_png_extract_method in GNU Libextractor 1.4

CVE-2017-15601 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

In GNU Libextractor 1.4, there is a heap-based buffer overflow in the EXTRACTOR_png_extract_method function in plugins/png_extractor.c, related to processiTXt and stndup.

Learn more about our Web Application Penetration Testing UK.