Buffer overflow in the Vcl.Graphics.TPicture.Bitmap implementation in the Visual Component Library (VCL) in Embarcadero Delphi XE6 20.0.15596.9843 and C++ Builder XE6 20.0.15596.9843 allows remote attackers to execute arbitrary code via a crafted BMP file.
References
Link | Resource |
---|---|
http://www.coresecurity.com/advisories/delphi-and-c-builder-vcl-library-buffer-overflow | |
http://www.kb.cert.org/vuls/id/646748 | Third Party Advisory US Government Resource |
http://support.embarcadero.com/article/44015 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-09-15 07:55
Updated : 2014-09-16 08:04
NVD link : CVE-2014-0993
Mitre link : CVE-2014-0993
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
embarcadero
- embarcadero_c\+\+builder_xe6
- embarcadero_delphi_xe6