PT-2012-2947 · Renren · Renren Talk
Publicado
2012-01-24
·
Atualizado
2012-01-25
·
CVE-2012-0915
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
RenRen Talk version 2.9
Description
The issue is caused by an integer signedness error that allows remote attackers to execute arbitrary code via crafted dimensions of a skin file. This leads to a heap-based buffer overflow, which can be demonstrated using a crafted BMP image.
Recommendations
For RenRen Talk version 2.9, update to a newer version that contains a fix for this issue to prevent remote attackers from executing arbitrary code.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Renren Talk