2013-08-09 22:56:07 2017-08-29 03:33:24

Integer overflow in Sagelight 4.4 and earlier allows remote attackers to execute arbitrary code via crafted width and height dimensions in a BMP file, which triggers a heap-based buffer overflow.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE
Advisory Patch Confirmed Link
sagelight-cve20133480-bmp-bo(85920)
61408