iccDEV Heap-Buffer-Overflow Vulnerability in CIccXmlArrayType
Vulnerability
A heap-buffer-overflow vulnerability has been identified in iccDEV versions prior to 2.3.1.5. This issue occurs in the 'DumpArray' function of the 'CIccXmlArrayType' template, leading to out-of-bounds read operations and potential crashes. The vulnerability arises from improper validation of matrix row and column counts when reading data, allowing for exploitation through crafted ICC files.
Impact
Exploitation of this vulnerability causes a heap-buffer-overflow, leading to out-of-bounds read and application crashes. Such memory corruption vulnerabilities can often be exploited to execute arbitrary code.
Reproduction
The vulnerability can be reproduced by using the 'iccToXml' command-line tool included in iccDEV. After the tool is run with a specific crafted ICC file that triggers the heap-buffer-overflow, the AddressSanitizer will report the memory corruption error, indicating that the vulnerability has been successfully exploited.
Remediation
Users can upgrade to iccDEV version 2.3.1.5 or later, where this vulnerability has been fixed.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.