Stack-based Buffer Overflow in Leptonica before 1.75.3

Stack-based Buffer Overflow in Leptonica before 1.75.3

CVE-2018-7186 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Leptonica before 1.75.3 does not limit the number of characters in a %s format argument to fscanf or sscanf, which allows remote attackers to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a long string, as demonstrated by the gplotRead and ptaReadStream functions.

Learn more about our Web Application Penetration Testing UK.