Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0978

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2012-0978
Last Modified 03 Feb 2012 10:06:11
Published 02 Feb 2012 12:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0978

Summary

Stack-based buffer overflow in npjp2.dll in LuraWave JP2 Browser Plug-In 1.1.1.11 and other versions before 2.1.1.11 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.

Vulnerable Systems

Application

  • Luratech Lurawave Jp2 Browser Plug-in 1.1.1.11


References

XF - lurawave-qcd-bo(72806)

BID - 51732

SECUNIA - 47831

OSVDB - 78662


Last Updated: 27 May 2016 10:56:27