CVE-2016-4336

CRITICAL

Lexmark Perspective Document Filters - Buffer Overflow

Title source: llm
STIX 2.1

Description

An exploitable out-of-bounds write exists in the Bzip2 parsing of the Lexmark Perspective Document Filters conversion functionality. A crafted Bzip2 document can lead to a stack-based buffer overflow causing an out-of-bounds write which under the right circumstance could potentially be leveraged by an attacker to gain arbitrary code execution.

References (1)

Core 1
Core References
Exploit, Technical Description, Third Party Advisory, VDB Entry x_refsource_misc
http://www.talosintelligence.com/reports/TALOS-2016-0173/

Scores

CVSS v3 9.8
EPSS 0.0383
EPSS Percentile 88.9%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (2)
Lexmark/Perceptive Document Filters
lexmark/perceptive_document_filters
Published Jan 06, 2017
Tracked Since Feb 18, 2026