CVE-2019-5084

2019-11-06T20:15:00
ID CVE-2019-5084
Type cve
Reporter talos-cna@cisco.com
Modified 2019-11-08T20:37:00

Description

An exploitable heap out-of-bounds write vulnerability exists in the TIF-parsing functionality of LEADTOOLS 20. A specially crafted TIF image can cause an offset beyond the bounds of a heap allocation to be written, potentially resulting in code execution. An attacker can specially craft a TIF image to trigger this vulnerability.