Tencent Libpag v4.3 is vulnerable to Buffer Overflow. A user can send a crafted image to trigger a overflow leading to remote code execution.
An attacker sends a specially crafted image file to an application using the LibPAG library. The library does not properly verify the data size while processing this file, leading to a buffer overflow in process memory (buffer overflow, CWE-680). The overflow enables overwriting critical areas of the process memory and consequently executing arbitrary code on the server side or target application.
An attacker can gain full control over the vulnerable system through remote code execution (RCE) without requiring any privileges. The confidentiality, integrity, and availability of the system are at risk.
Apply patches available from the vendor according to the references. Until the fix is deployed, it is recommended to restrict the ability to upload and process image files through components using the LibPAG library and to monitor network traffic anomalies.
Tencent LibPAG version 4.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTencent Libpag
APPTencent4.3
Related vulnerabilities
Tencent libpag through 4.3.51 has an integer overflow in DecodeStream::checkEndOfFile() in codec/utils/DecodeS...
RCE w WeKnora — command injection w walidacji konfiguracji MCP stdio
RCE przez SQL Injection w Tencent WeKnora (bypass walidacji wyrażeń PostgreSQL)
Command injection w Tencent WeKnora — wykonanie podprocesów przez MCP stdio
vConsole v3.15.0 was discovered to contain a prototype pollution due to incorrect key and value resolution in ...