Stack-based Buffer Overflow in giftrans 1.12.2: Arbitrary Data Overwrite Vulnerability

Stack-based Buffer Overflow in giftrans 1.12.2: Arbitrary Data Overwrite Vulnerability

CVE-2021-45972 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

The giftrans function in giftrans 1.12.2 contains a stack-based buffer overflow because a value inside the input file determines the amount of data to write. This allows an attacker to overwrite up to 250 bytes outside of the allocated buffer with arbitrary data.

Learn more about our Web Application Penetration Testing UK.