Windows Imaging API Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability


Windows Imaging API suffers from improper restriction of operations within the bounds of a memory buffer vulnerability


The information has been provided by Symeon Paraschoudis 

The original article can be found at:


A remote code execution vulnerability exists when the Windows Imaging API improperly handles objects in memory, aka ‘Windows Imaging API Remote Code Execution Vulnerability’.

Vulnerable Systems:

Windows Imaging API 

CVE Information:


Disclosure Timeline:
Published Date:10/10/2019