An attacker can overflow the stack and the heap of the process when sending large array of bytes to the presentation context item length segment of the DICOM standard, potentially resulting in remote code execution and/or denial of service scenario. Stack/Heap Buffer overflow/underflow can be triggered when sending and processing wrong length of ACSE data structure received over the network by the DICOM Store-SCP service. Description The vulnerability is caused due to the usage of vulnerable collection of libraries that are part of DCMTK Toolkit, specifically the parser for the DICOM Upper Layer Protocol or DUL. Osirix is complementary to existing viewers, in particular to nuclear medicine viewers. OsiriX is an image processing application for Mac dedicated to DICOM images (".dcm" / ".DCM" extension) produced by equipment (MRI, CT, PET, PET-CT. OsiriX MD is certified for medical use, FDA cleared and CE II labeled. OsiriX MD supports 64-bit computing and multithreading for the best performances on the most modern processors. It offers advanced post-processing techniques in 2D and 3D, exclusive innovative technique for 3D and 4D navigation and a complete integration with any PACS.
It fully supports the DICOM standard for an easy integration in your workflow environment and an open platform for development of processing tools.
It is the result of more than 10 years of research and development in digital imaging. Summary With high performance and an intuitive interactive user interface, OsiriX MD is the most widely used DICOM viewer in the world. Title: OsiriX DICOM Viewer 8.0.1 () Remote Memory Corruption Vulnerability
0 kommentar(er)
