iccDEV Stack-Buffer Overflow Vulnerability in CIccTagFloatNum::GetValues()
Vulnerability
A stack-buffer overflow vulnerability has been identified in the iccDEV library, specifically in the CIccTagFloatNum<>::GetValues() function. This vulnerability, present in versions prior to 2.3.1.3, is triggered when the library processes malformed ICC profiles. The flaw allows for an out-of-bounds write on the stack, which could lead to memory corruption, unauthorized information disclosure, or arbitrary code execution, depending on how the library is used and the nature of the crafted ICC files.
Impact
Exploitation of this vulnerability causes a stack-buffer overflow, which can overwrite stack memory and potentially lead to arbitrary code execution.
Reproduction
The vulnerability can be reproduced by compiling the iccDEV library with AddressSanitizer enabled, and then using the 'iccApplyNamedCmm' tool to process a specially crafted ICC file that triggers the buffer overflow. The AddressSanitizer will report the stack-buffer overflow error, indicating that the vulnerability has been successfully exploited.
Remediation
Users can upgrade to iccDEV version 2.3.1.3 or later to address this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.