iccDEV Heap-Buffer-Overflow Vulnerability in CIccLocalizedUnicode::GetText()
Vulnerability
A heap-buffer-overflow vulnerability has been identified in the iccDEV library, specifically in the CIccLocalizedUnicode::GetText() function. This issue affects versions prior to 2.3.1.2 and can lead to memory corruption by allowing the reading of data beyond the allocated buffer size. The vulnerability arises because the function does not properly validate the length of the Unicode data, creating a risk when processing ICC color profiles.
Impact
Exploitation of this vulnerability causes a heap-buffer-overflow, which can lead to memory corruption and potentially allow for arbitrary code execution.
Reproduction
The vulnerability can be reproduced using a crafted ICC profile that exploits the lack of proper length validation in the CIccLocalizedUnicode::GetText() function. This can be done by using the iccDEV library's fuzzing tools, specifically with LibFuzzer, which has already been set up to test this vulnerability.
Remediation
Users can upgrade to iccDEV version 2.3.1.2, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.