Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Cisco Talos discovered multiple flaws in the LEADTOOLS toolkits

Cisco Talos security researchers discovered multiple flaws in the LEADTOOLS imaging toolkits that could lead to code execution on the target system. LEAD addressed them this week. Security experts at Cisco Talos discovered four High severity vulnerabilities in the LEADTOOLS imaging toolkits that could be exploited to execute arbitrary code on the target system. LEADTOOLS […]

LEADTOOLS toolkits

Cisco Talos security researchers discovered multiple flaws in the LEADTOOLS imaging toolkits that could lead to code execution on the target system. LEAD addressed them this week.

Security experts at Cisco Talos discovered four High severity vulnerabilities in the LEADTOOLS imaging toolkits that could be exploited to execute arbitrary code on the target system.

LEADTOOLS is a collection of comprehensive toolkits to integrate document, medical, multimedia, and imaging technologies into desktop, server, tablet, and mobile applications.

The experts discovered multiple issues that could be exploited by remote attackers to trigger denial-of-service (DoS) conditions and execute arbitrary code on vulnerable systems.

The first vulnerability, tracked as CVE-2019-5084, is a heap out-of-bounds write issue that resides in the TIF-parsing functionality of LEADTOOLS 20.

An attacker could exploit the flaw by using a specially crafted TIF image.

“An exploitable heap out-of-bounds write vulnerability exists in the TIF-parsing functionality of LEADTOOLS 20. A specially crafted TIF image can cause an offset beyond the bounds of a heap allocation to be written, potentially resulting in code execution.” reads the security advisory published by Talos. “An attacker can specially craft a TIF image to trigger this vulnerability.”

The second vulnerability tracked as CVE-2019-5099 is an exploitable integer underflow issue that resides in the CMP-parsing functionality of LEADTOOLS 20. The flaw could be exploited using a specially crafted CMP image file.

“An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of LEADTOOLS 20. A specially crafted CMP image file can cause an integer underflow, potentially resulting in code execution.” continues the post. “An attacker can specially craft a CMP image to trigger this vulnerability. “

Experts also discovered an integer overflow issue in the BMP header parsing functionality of LEADTOOLS 20 tracked as CVE-2019-5100 that could potentially result in code execution. 

The last issue discovered by Cisco Talos is an exploitable heap overflow vulnerability, tracked as CVE-2019-5125, that exists in the JPEG2000-parsing functionality of LEADTOOLS 20.

The vulnerability could be exploited using a specially crafted J2K image file that can cause an out-of-bounds write of a heap buffer

The same as with the first two bugs, an attacker looking to trigger these weaknesses would need specially crafted BMP and J2K image files.

Talos experts confirmed that version 20.0.2019.3.15 of LEADTOOLS is affected by these vulnerabilities that received a CVSS score of 8.8.

The vulnerabilities were discovered in early September and reported them to LEAD Technologies Inc. on September 10. The company addressed the issues with a patch earlier this week.

Talos team also released SNORT rules that allow users to detect exploitation attempts.

[adrotate banner=”9″] [adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – LEADTOOLS, hacking)

[adrotate banner=”5″]

[adrotate banner=”13″]