Out-of-Bounds Write Vulnerability in JT Utilities and JTTK Library (ZDI-CAN-14913)

Out-of-Bounds Write Vulnerability in JT Utilities and JTTK Library (ZDI-CAN-14913)

CVE-2021-44441 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A vulnerability has been identified in JT Utilities (All versions < V13.1.1.0), JTTK (All versions < V11.1.1.0). JTTK library in affected products contains an out of bounds write past the end of an allocated structure while parsing specially crafted JT files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-14913)

Learn more about our Web Application Penetration Testing UK.