Описание
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment.
Уязвимые конфигурации
EPSS
7.8 High
CVSS3
7 High
CVSS3
Дефекты
Связанные уязвимости
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment.
xfpt versions prior to 1.01 fails to handle appropriately some paramet ...
xfpt versions prior to 1.01 fails to handle appropriately some parameters inside the input data, resulting in a stack-based buffer overflow vulnerability. When a user of the affected product is tricked to process a specially crafted file, arbitrary code may be executed on the user's environment.
Уязвимость конвертора текста в структуру XML-файла XFPT, связанная с копированием буфера без проверки размера входных данных, позволяющая нарушителю выполнить произвольный код
EPSS
7.8 High
CVSS3
7 High
CVSS3