Lucene search
HistoryFeb 02, 2012 - 5:55 p.m.
CVE-2012-0978
cve-2012-0978
buffer overflow
npjp2.dll
lurawave jp2 browser plug-in
remote code execution
jpeg2000
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.054 Low
EPSS
Percentile
93.2%
Stack-based buffer overflow in npjp2.dll in LuraWave JP2 Browser Plug-In 1.1.1.11 and other versions before 2.1.1.11 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.
Affected configurations
Node
luratechlurawave_jp2_browser_plug-inMatch1.1.1.11
| CPE | Name | Operator | Version |
|---|---|---|---|
| luratech:lurawave_jp2_browser_plug-in | luratech lurawave jp2 browser plug-in | eq | 1.1.1.11 |
Related
prion
prion
Stack overflow
2012-02-02 17:55:00
nvd
nvd
CVE-2012-0978
2012-02-02 17:55:01
nessus
nessus
LuraWave JP2 Browser Plug-In < 2.1.1.11 npjp2.dll Remote Buffer Overflow
2012-02-14 00:00:00
cvelist
cvelist
CVE-2012-0978
2012-02-02 17:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.054 Low
EPSS
Percentile
93.2%
Related for CVE-2012-0978