Arbitrary Code Execution via TIFF and PCX File Buffer Overflow

Arbitrary Code Execution via TIFF and PCX File Buffer Overflow

CVE-2021-27039 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A maliciously crafted TIFF and PCX file can be forced to read and write beyond allocated boundaries when parsing the TIFF and PCX file for based overflow. This vulnerability can be exploited to execute arbitrary code.

Learn more about our Web Application Penetration Testing UK.