3 matches found
CVE-2019-5100
An exploitable integer overflow vulnerability exists in the BMP header parsing functionality of LEADTOOLS 20. A specially crafted BMP image file can cause an integer overflow, potentially resulting in code execution. An attacker can specially craft a BMP image to trigger this vulnerability...
CVE-2019-5100
An exploitable integer overflow vulnerability exists in the BMP header parsing functionality of LEADTOOLS 20. A specially crafted BMP image file can cause an integer overflow, potentially resulting in code execution. An attacker can specially craft a BMP image to trigger this vulnerability...
CVE-2019-5100
Summary: CVE-2019-5100 affects LEADTOOLS 20, specifically the BMP header parsing in the LEAD_Load path (lfBmpX.DLL). The root cause is an integer overflow when deriving the to-be-copied buffer size from the BMP biWidth and biSize fields, which can overflow the allocated memory and cause an out-of...