BID:39471

Visualization Library DAT File Handling Multiple Buffer Overflow Vulnerabilities

Info

Visualization Library DAT File Handling Multiple Buffer Overflow Vulnerabilities

Bugtraq ID:	39471
Class:	Boundary Condition Error
CVE:	CVE-2010-0994
Remote:	Yes
Local:	No
Published:	Apr 14 2010 12:00AM
Updated:	Apr 14 2010 12:00AM
Credit:	Secunia Research
Vulnerable:	Michele Bosi Visualization Library 2009.8.812

Not Vulnerable:

Discussion

Visualization Library DAT File Handling Multiple Buffer Overflow Vulnerabilities

Visualization Library is prone to multiple remote buffer-overflow vulnerabilities because the software fails to perform adequate boundary checks on user-supplied data.

An attacker can exploit these issues to execute arbitrary code with the privileges of a vulnerable user. Failed exploit attempts will result in a denial-of-service condition.

Exploit / POC

Visualization Library DAT File Handling Multiple Buffer Overflow Vulnerabilities

Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

Visualization Library DAT File Handling Multiple Buffer Overflow Vulnerabilities

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].

References

Visualization Library DAT File Handling Multiple Buffer Overflow Vulnerabilities

References:

Visualization Library DAT File Parsing Vulnerabilities (Secunia)
Visualization Library Homepage (Michele Bosi)