RenRen Talk '.png' and '.bmp' Files Multiple Remote Heap Buffer Overflow Vulnerabilities
BID:51585
Info
RenRen Talk '.png' and '.bmp' Files Multiple Remote Heap Buffer Overflow Vulnerabilities
| Bugtraq ID: | 51585 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2012-0915 CVE-2012-0916 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 20 2012 12:00AM |
| Updated: | Mar 19 2015 07:35AM |
| Credit: | Tielei Wang |
| Vulnerable: |
RenRen RenRen Talk 2.9 |
| Not Vulnerable: | |
Discussion
RenRen Talk '.png' and '.bmp' Files Multiple Remote Heap Buffer Overflow Vulnerabilities
RenRen Talk is prone to multiple heap-based buffer-overflow vulnerabilities.
Successful exploits can allow attackers to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
RenRen Talk version 2.9 is vulnerable; other versions may also be affected.
RenRen Talk is prone to multiple heap-based buffer-overflow vulnerabilities.
Successful exploits can allow attackers to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
RenRen Talk version 2.9 is vulnerable; other versions may also be affected.
Exploit / POC
RenRen Talk '.png' and '.bmp' Files Multiple Remote Heap Buffer Overflow Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
RenRen Talk '.png' and '.bmp' Files Multiple Remote Heap Buffer Overflow Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at:[email protected].
References
RenRen Talk '.png' and '.bmp' Files Multiple Remote Heap Buffer Overflow Vulnerabilities
References:
References:
- Renren Talk Homepage (Renren)