Stack-based Buffer Overflow in OpenJPEG 2.3.0's pgxtovolume Function

Stack-based Buffer Overflow in OpenJPEG 2.3.0's pgxtovolume Function

CVE-2017-17480 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in jp3d/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.

Learn more about our Web Application Penetration Testing UK.