In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the WSubStr function (provided by the scripting engine) allows an attacker to cause a denial of service by crashing the application.
References
Link | Resource |
---|---|
https://www.sweetscape.com/010editor/release_notes.html | Release Notes Vendor Advisory |
https://github.com/ereisr00/bagofbugz/blob/master/010Editor/WSubStr.bt | Exploit Third Party Advisory |
Configurations
Information
Published : 2019-06-05 10:29
Updated : 2020-08-24 10:37
NVD link : CVE-2019-12554
Mitre link : CVE-2019-12554
JSON object : View
CWE
CWE-125
Out-of-bounds Read
Products Affected
sweetscape
- 010_editor