CVE-2017-12106

Summary

A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code execution. An attacker can send a specific .TGA file to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
TalosComputerinsel Photoline20.02affected

Weaknesses

  • remote code execution

ADP Enrichment

CVE Program Container

Additional References

References