CVE-2017-12106

Name of the Vulnerable Software and Affected Versions Computerinsel Photoline version 20.02

Description A memory corruption issue exists in the .TGA parsing functionality. This can be triggered by a specially crafted .TGA file, leading to an out of bounds write and potentially resulting in code execution. An attacker can exploit this by sending a specific .TGA file.

Recommendations For Computerinsel Photoline version 20.02, consider avoiding the use of .TGA files until a patch is available. As a temporary workaround, restrict the ability to open or process .TGA files to minimize the risk of exploitation.