2 matches found
CVE-2018-3858
An exploitable heap overflow exists in the TIFF parsing functionality of Canvas Draw version 4.0.0. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a TIFF image to trigger this vulnerability and...
CVE-2018-3858
Canvas Draw 4.0.0 is affected by a heap overflow in the TIFF parsing path. A specially crafted TIFF image can cause an out-of-bounds write, overwriting data and enabling code execution. Public sources in CNVD/NVD entries corroborate a TIFF parsing heap overflow with similar wording across multipl...