PT-2019-11445 · Openmodelica · Openmodelica Omcompiler

Sajeeb Lohani

Publicado

2019-07-15

Atualizado

2021-07-21

CVE-2019-1010038

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: OpenModelica OMCompiler (affected versions not specified)

Description: The issue affects the OpenModelica OMCompiler, allowing for possible code execution and denial of service due to a buffer overflow. The component vulnerable to this issue is the OPENMODELICAHOME parameter, which can be changed via an environment variable. An attacker can exploit this by changing an environment variable.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

CVE-2019-1010038

Produtos afetados

Openmodelica Omcompiler

PT-2019-11445 · Openmodelica · Openmodelica Omcompiler

CVE-2019-1010038

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3