Cisco Talos discovered multiple out-of-bounds write vulnerabilities in Accusoft ImageGear that an adversary could exploit to corrupt memory on the targeted machine. The ImageGear library is a document-imaging developer toolkit that offers image conversion, creation, editing, annotation and more. A user could trigger these vulnerabilities by opening an attacker-created, malicious file. An update is available for affected customers and the vulnerability has been fixed, says Talos. The following SNORT rules will detect exploitation attempts.”]
Source: https://blog.talosintelligence.com/2021/03/vuln-spotlight-accusoft-image-gear-march-2021.html