cve/2009/CVE-2009-3994.md

CVE-2009-3994

Description

Stack-based buffer overflow in the GetUID function in src-IL/src/il_dicom.c in DevIL 1.7.8 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted DICOM file.

POC

Reference

• http://sourceforge.net/tracker/download.php?group_id=4470&atid=304470&file_id=353841&aid=2908728

Github

No PoCs found on GitHub currently.