Accusoft ImageGear buffer overflow | CVE-2023-28393

September 26, 2023

NAME
__________
Accusoft ImageGear buffer overflow

Platforms Affected:
Accusoft ImageGear 20.1

Risk Level:
5.6

Exploitability:
Unproven

Consequences:
Gain Access

DESCRIPTION
__________

Accusoft ImageGear is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the tif_processing_dng_channel_count functionality. By By providing specially crafted malformed file, a remote attacker could overflow a buffer and execute arbitrary code on the system.

CVSS 3.0 Information
__________

Privileges Required:
None

User Interaction:
None

Scope:
Unchanged

Access Vector:
Network

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

 To keep up to date follow us on the below channels.

Tags: , ,

You may have missed

CISA Logo

US-CERT Vulnerability Summary for the Week of November 20, 2023

December 2, 2023
f21e773e48b3dc3cf2cb34eaa7272a44a11b2f6e5cc64c18a859aae5d81aa30f

T3SF – Technical Tabletop Exercises Simulation Framework

December 2, 2023
russian hacker

Russian Hacker Vladimir Dunaev Convicted for Creating TrickBot Malware

December 2, 2023
russian hacker

Russian Hacker Vladimir Dunaev Convicted for Creating TrickBot Malware

December 2, 2023
image

Hunters International Ransomware Victim: IDESA group, S[.]A[.] De C[.]V[.]

December 2, 2023