Multiple buffer overflows in NASA Common Data Format (CDF) allow context-dependent attackers to execute arbitrary code, as demonstrated using (1) an array index error in the ReadAEDRList64 function, and other errors in the (2) SearchForRecord_r_64, (3) LastRecord64, (4) CDFsel64, and other unspecified functions.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2009-08-18 14:00
Updated : 2009-08-20 21:00
NVD link : CVE-2009-2850
Mitre link : CVE-2009-2850
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
nasa_goddard_space_flight_center
- common_data_format