CVE-2016-8693 in Jasperinfo

Summary

Double free vulnerability in the mem_close function in jas_stream.c in JasPer before 1.900.10 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image to the imginfo command.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

10/15/2016

Disclosure

02/15/2017

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-415

CVSS

7.5

EPSS

0.00614

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-8693
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-8693
CVE Details	https://www.cvedetails.com/cve/CVE-2016-8693/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!