PT-2019-12849 · Sweetscape · 010 Editor
Ereisr00
·
Publicado
2019-07-22
·
Atualizado
2020-08-24
·
CVE-2019-12551
CVSS v2.0
5.8
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
010 Editor version 9.0.1
Description
The issue arises from improper validation of arguments in the internal implementation of the
Memcpy function, which is provided by the scripting engine. This allows an attacker to overwrite arbitrary memory, potentially leading to code execution.Recommendations
For version 9.0.1, consider disabling the scripting engine or restricting its use until a patch is available to prevent potential code execution.
Exploit
Correção
Memory Corruption
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
010 Editor