Stack-based buffer overflow in the rf_report_error function in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long string in an ERS file.
References
Link | Resource |
---|---|
http://www.secunia.com/blog/366 | Vendor Advisory |
http://osvdb.org/show/osvdb/93650 | |
http://attrition.org/pipermail/vim/2013-May/002682.html | |
http://www.exploit-db.com/exploits/26708 | Exploit |
http://secunia.com/advisories/53620 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-01-19 09:16
Updated : 2014-01-21 13:14
NVD link : CVE-2013-3482
Mitre link : CVE-2013-3482
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
hexagon
- erdas_er_viewer