CVE-2018-3858

2018-07-19T19:29:00
ID CVE-2018-3858
Type cve
Reporter cve@mitre.org
Modified 2019-10-09T23:40:00

Description

An exploitable heap overflow exists in the TIFF parsing functionality of Canvas Draw version 4.0.0. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a TIFF image to trigger this vulnerability and gain the ability to execute code. A different vulnerability than CVE-2018-3857.