PT-2009-1118 · File · File
Drew Yao
·
Publicado
2009-03-18
·
Atualizado
2021-06-10
·
CVE-2009-0947
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
file versions prior to 5.02
Description
The issue is related to multiple integer overflows in the
cdf read property info and cdf read sat functions. This can allow a remote attacker to access confidential data, compromise data integrity, and cause a denial of service.Recommendations
For versions prior to 5.02, update to version 5.02 or later to resolve the issue. As a temporary workaround, consider restricting access to the
cdf read property info and cdf read sat functions until a patch is available.Correção
Integer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
File