CVE-2012-2091

Multiple buffer overflows in FlightGear 2.6 and earlier and SimGear 2.6 and earlier allow user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a (1) long string in a rotor tag of an aircraft xml model to the Rotor::getValueforFGSet function in src/FDM/YASim/Rotor.cpp or (2) a crafted UDP packet to the SGSocketUDP::read function in simgear/simgear/simgear/io/sg_socket_udp.cxx.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:simgear:simgear:1.9.1:*:*:*:*:*:*:*
cpe:2.3:a:simgear:simgear:*:*:*:*:*:*:*:*
cpe:2.3:a:simgear:simgear:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:flightgear:flightgear:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:flightgear:flightgear:1.9.1:*:*:*:*:*:*:*
cpe:2.3:a:flightgear:flightgear:*:*:*:*:*:*:*:*

Information

Published : 2012-06-16 20:41

Updated : 2016-12-02 18:59


NVD link : CVE-2012-2091

Mitre link : CVE-2012-2091


JSON object : View

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Advertisement

dedicated server usa

Products Affected

flightgear

  • flightgear

simgear

  • simgear