Use-after-free and Invalid Heap Read Vulnerability in AutoTrace 0.31.1

Use-after-free and Invalid Heap Read Vulnerability in AutoTrace 0.31.1

CVE-2017-9182 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (use-after-free and invalid heap read), related to the GET_COLOR function in color.c:16:11.

Learn more about our Web Application Penetration Testing UK.