CVE-2019-5099

Summary

An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of LEADTOOLS 20. A specially crafted CMP image file can cause an integer underflow, potentially resulting in code execution. An attacker can specially craft a CMP image to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aLEADTOOLSLEADTOOLS 20.0.2019.3.15affected

Weaknesses

  • CWE-191: CWE-191: Integer Underflow (Wrap or Wraparound)

ADP Enrichment

CVE Program Container

Additional References

References