PT-2005-3922 · Image Line · Fl Studio

Varunuppal

Publicado

2005-09-28

Atualizado

2016-10-18

CVE-2005-3092

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Image-Line Software FL Studio version 5.0.1

Description A heap-based buffer overflow issue allows remote attackers to execute arbitrary code via a .flp file that contains a long path to a mid or wav file.

Recommendations For Image-Line Software FL Studio version 5.0.1, consider avoiding the use of .flp files that contain long paths to mid or wav files until a patch is available. As a temporary workaround, restrict the handling of .flp files to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2005-3092

Produtos afetados

Fl Studio

PT-2005-3922 · Image Line · Fl Studio

CVE-2005-3092

Identificadores relacionados

Produtos afetados

Referências · 5