CVE-2016-10504 : Heap-based buffer overflow vulnerability in the opj_mqc

Heap-based buffer overflow vulnerability in the opj_mqc_byteout function in mqc.c in OpenJPEG before 2.2.0 allows remote attackers to cause a denial of service (application crash) via a crafted bmp file.

Published 2017-08-30 09:29:00

Updated 2020-09-09 19:57:18

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowDenial of service

Products affected by CVE-2016-10504

Uclouvain » Openjpeg
Versions up to, including, (<=) 2.1.2
cpe:2.3:a:uclouvain:openjpeg:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2016-10504

EPSS FAQ

5.95%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 90 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-10504

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
6.5	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H	2.8	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2016-10504

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2016-10504

http://www.securityfocus.com/bid/100564

OpenJPEG 'mqc.c' Remote Heap Based Buffer Overflow Vulnerability
https://security.gentoo.org/glsa/201710-26

OpenJPEG: Multiple vulnerabilities (GLSA 201710-26) — Gentoo security

CVEs referencing this url
https://github.com/uclouvain/openjpeg/commit/397f62c0a838e15d667ef50e27d5d011d2c79c04

Fix write heap buffer overflow in opj_mqc_byteout(). Discovered by Ke… · uclouvain/openjpeg@397f62c · GitHub
Issue Tracking;Patch;Third Party Advisory
https://github.com/uclouvain/openjpeg/issues/835

[CVE-2016-10504] Out-of-Bounds Write in opj_mqc_byteout of mqc.c · Issue #835 · uclouvain/openjpeg · GitHub
Issue Tracking;Patch;Third Party Advisory
http://www.debian.org/security/2017/dsa-4013

Debian -- Security Information -- DSA-4013-1 openjpeg2

CVEs referencing this url
https://www.exploit-db.com/exploits/42600/

OpenJPEG - 'mqc.c' Heap Buffer Overflow

Jump to

Vulnerability Details : CVE-2016-10504

Products affected by CVE-2016-10504

Exploit prediction scoring system (EPSS) score for CVE-2016-10504

CVSS scores for CVE-2016-10504

CWE ids for CVE-2016-10504

References for CVE-2016-10504