exploitDog

CVE-2010-0994

Опубликовано: 15 апр. 2010

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Multiple buffer overflows in src/vl/vlDAT.cpp in Visualization Library 2009.08.812 allow user-assisted remote attackers to execute arbitrary code via a crafted DAT file, related to the (1) vl::loadDAT and (2) vl::isDAT functions.

Ссылки

http://secunia.com/advisories/38162
Vendor Advisory
http://secunia.com/secunia_research/2010-02/
Vendor Advisory
http://www.securityfocus.com/archive/1/510710/100/0/threaded
http://www.securityfocus.com/bid/39471
http://secunia.com/advisories/38162
Vendor Advisory
http://secunia.com/secunia_research/2010-02/
Vendor Advisory
http://www.securityfocus.com/archive/1/510710/100/0/threaded
http://www.securityfocus.com/bid/39471

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:visualizationlibrary:visualization_library:2009.08.812:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02662

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-46jm-69xf-5p8w

github

почти 4 года назад

Multiple buffer overflows in src/vl/vlDAT.cpp in Visualization Library 2009.08.812 allow user-assisted remote attackers to execute arbitrary code via a crafted DAT file, related to the (1) vl::loadDAT and (2) vl::isDAT functions.

EPSS

Процентиль: 85%

0.02662

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-119