CVE-2018-3973

2019-02-06T21:29:00
ID CVE-2018-3973
Type cve
Reporter cve@mitre.org
Modified 2019-02-08T18:57:00

Description

An exploitable out of bounds write exists in the CAL parsing functionality of Canvas Draw version 5.0.0. A specially crafted CAL image processed via the application can lead to an out of bounds write overwriting arbitrary data. An attacker can deliver a PCX image to trigger this vulnerability and gain code execution.