Accusoft ImageGear contains a vulnerability that could allow an attacker to corrupt the software’s memory. The ImageGear library is a document-imaging developer toolkit that offers image conversion, creation, editing, annotation and more. An adversary could send a specially crafted malformed file to cause an out-of-bounds condition and memory corruption. An attacker can provide a malicious file to trigger this vulnerability. An update is available for affected customers and the vulnerability has been fixed, says Cisco Talos.”]
Source: https://blog.talosintelligence.com/2021/03/vuln-spotlight-accusoft-oob-.html