libEMF 1.0.12 libemf.cpp ScaleViewPortExtEx EMF File memory corruption

WpisedytowaćHistoryDiffjsonxmlCTI

W libEMF 1.0.12 została odkryta podatność. Problemem dotknięta jest funkcja ScaleViewPortExtEx w pliku libemf.cpp. Nie są znane żadne środki zaradcze. Sugerowana jest zamiana podatnego komponentu na produkt alternatywny.

Pole2020-06-16 08:412020-06-16 08:46
namelibEMFlibEMF
version1.0.121.0.12
filelibemf.cpplibemf.cpp
functionScaleViewPortExtExScaleViewPortExtEx
input_typeEMF FileEMF File
risk22
cvss2_vuldb_basescore6.86.8
cvss2_vuldb_tempscore6.86.8
cvss2_vuldb_avNN
cvss2_vuldb_acMM
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss3_meta_basescore5.45.4
cvss3_meta_tempscore5.45.4
cvss3_vuldb_basescore5.35.3
cvss3_vuldb_tempscore5.35.3
cvss3_vuldb_avLL
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiRR
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
date1592179200 (2020-06-15)1592179200 (2020-06-15)
price_0day$0-$5k$0-$5k
cveCVE-2020-13999CVE-2020-13999
cvss2_vuldb_eNDND
cvss2_vuldb_rlNDND
cvss2_vuldb_rcNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlXX
cvss3_vuldb_rcXX
cvss3_nvd_basescore5.55.5
cwe0190 (przepełnienie bufora)
cvss2_nvd_avN
cvss2_nvd_acM
cvss2_nvd_auN
cvss2_nvd_ciN
cvss2_nvd_iiN
cvss2_nvd_aiP
cvss3_nvd_avL
cvss3_nvd_acL
cvss3_nvd_prN
cvss3_nvd_uiR
cvss3_nvd_sU
cvss3_nvd_cN
cvss3_nvd_iN
cvss3_nvd_aH
cve_assigned1591747200
cve_nvd_summaryScaleViewPortExtEx in libemf.cpp in libEMF (aka ECMA-234 Metafile Library) 1.0.12 allows an integer overflow and denial of service via a crafted EMF file.

Interested in the pricing of exploits?

See the underground prices here!