CVE-2013-6045

OpenJPEG < 1.3 - Remote Code Execution via Heap-Based Buffer Overflow

Title source: llm
STIX 2.1

Description

Multiple heap-based buffer overflows in OpenJPEG 1.3 and earlier might allow remote attackers to execute arbitrary code via unspecified vectors.

References (10)

Core 10
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/64109
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-1850.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/100638
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/100637
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/100636
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/100646
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/100641
Mailing List mailing-list x_refsource_mlist
http://seclists.org/oss-sec/2013/q4/412
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2013/dsa-2808

Scores

EPSS 0.0551
EPSS Percentile 91.9%

Details

CWE
CWE-119
Status published
Products (1)
uclouvain/openjpeg < 1.3
Published Dec 12, 2013
Tracked Since Feb 18, 2026