Computer Security
[EN] securityvulns.ru no-pyccku


Lattice Diamond Programmer buffer overflow
Published:25.06.2012
Source:
SecurityVulns ID:12437
Type:local
Threat Level:
4/10
Description:Code execution via .xcf files.
Affected:LATTICE : Diamond Programmer 1.4
CVE:CVE-2012-2614 (Buffer overflow in programmer.exe in Lattice Diamond Programmer 1.4.2 allows user-assisted remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long string in a version attribute of an ispXCF element in an .xcf file.)
Original documentdocumentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2012-0530 - Lattice Diamond Programmer Buffer Overflow (25.06.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod