PT-2019-13809 · Adplug Team · Adplug

Fcambus

·

Publicado

2019-08-07

·

Atualizado

2022-10-06

·

CVE-2019-14734

CVSS v3.1

8.8

Alta

VetorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions AdPlug version 2.3.1
Description The issue is related to multiple heap-based buffer overflows in the CmtkLoader::load() function, located in mtk.cpp.
Recommendations For AdPlug version 2.3.1, consider avoiding the use of the CmtkLoader::load() function until a patch is available. As a temporary workaround, restrict access to the mtk.cpp module to minimize the risk of exploitation.

Exploit

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

CVE-2019-14734
OPENSUSE-SU-2024:12762-1

Produtos afetados

Adplug