6 matches found
CVE-2018-3870
Canvas Draw (ACD Systems) is affected by CVE-2018-3870/3871: an out-of-bounds write in the PCX parsing feature of version 4.0.0 can be triggered by processing a specially crafted PCX image, allowing overwriting of data and potential code execution. Public sources (CNVD-2019-06640/06636) describe ...
CVE-2018-3857
Canvas Draw 4.0.0 contains a heap-based buffer overflow in TIFF parsing that allows overwriting memory and executing code when processing a crafted TIFF image. This is the core issue described across multiple sources (e.g., CNVD entries) linking to CVE-2018-3857. Practical impact: attacker-suppli...
CVE-2018-3858
Canvas Draw 4.0.0 is affected by a heap overflow in the TIFF parsing path. A specially crafted TIFF image can cause an out-of-bounds write, overwriting data and enabling code execution. Public sources in CNVD/NVD entries corroborate a TIFF parsing heap overflow with similar wording across multipl...
CVE-2018-3859
Affected product: ACD Systems Canvas Draw (version 4.0.0) – TIFF parsing feature. Vulnerability: Out-of-bounds write in TIFF parsing can overwrite arbitrary data. Impact: Potential code execution via processing a specially crafted TIFF image. Root cause / detail from connected sources: Out-of-bou...
CVE-2018-3871
CVE-2018-3871 is an out-of-bounds write vulnerability in Canvas Draw 4.0.0’s PCX parsing functionality. A specially crafted PCX image processed by the application can trigger an out-of-bounds write, overwriting data and enabling code execution. The CVE is documented as a separate issue from CVE-2...
CVE-2018-3860
The combined documents identify CVE-2018-3860 as an exploitable out-of-bounds write in Canvas Draw 4.0.0, specifically in the TIFF parsing functionality. A specially crafted TIFF image processed by Canvas Draw can cause an out-of-bounds write, overwriting data and enabling code execution. This vu...