Function PeCoffLoaderLoadImage() in library MdePkg/BasePeCoffLib does not properly compute the End address of PE sections, allowing the End address to be before the Base one. A malicious PE could be used to corrupt the memory during the boot process, by using a VirtualSize equals to 0.