CVE-2017-2803— Core PHOTO-PAINT X8 缓冲区错误漏洞

N/A

A remote out of bound write vulnerability exists in the TIFF parsing functionality of Core PHOTO-PAINT X8 version 18.1.0.661. A specially crafted TIFF file can cause a vulnerability resulting in potential memory corruption. An attacker can send the victim a specific TIFF file to trigger this vulnerability. This vulnerability only exists in the 64-bit version.

N/A

N/A

Core PHOTO-PAINT X8 缓冲区错误漏洞

Core PHOTO-PAINT X8是加拿大科亿尔（Corel）公司的一套彩绘和照片编修软件。 Core PHOTO-PAINT X8 18.1.0.661版本中的TIFF解析功能存在越界写入漏洞。远程攻击者可借助特制的TIFF文件利用该漏洞在受影响应用程序上下文中执行任意代码或造成拒绝服务（内存损坏）。

N/A

N/A