CVE-2020-6082

Summary

An exploitable out-of-bounds write vulnerability exists in the ico_read function of the igcore19d.dll library of Accusoft ImageGear 19.6.0. A specially crafted ICO file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file to the victim to trigger the vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aAccusoftAccusoft ImageGear 19.4.0 Accusoft ImageGear 19.5.0 Accusoft ImageGear 19.6.0affected

Weaknesses

  • out-of-bounds write

ADP Enrichment

CVE Program Container

Additional References

References