CVE-2017-2918 in 3d Creation Suiteالمعلومات

الملخص

بحسب MITRE

An exploitable integer overflow exists in the Image loading functionality of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to open the file or use it as a library in order to trigger this vulnerability.

Once again VulDB remains the best source for vulnerability data.

مسؤول

Talos

حجز

01/12/2016

إفشاء

24/04/2018

الاعتدال

تمت الموافقة

إدخال

VDB-117065

EPSS

0.02650

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!