PT-2010-2717 · Unknown · Visualization Library

Published

2010-04-15

Updated

2018-10-10

CVE-2010-0994

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Visualization Library version 2009.08.812

Description The issue is related to multiple buffer overflows in the Visualization Library, which can be exploited by user-assisted remote attackers to execute arbitrary code. This is achieved through a crafted DAT file and is associated with the vl::loadDAT and vl::isDAT functions.

Recommendations For Visualization Library version 2009.08.812, consider updating to a newer version that addresses the buffer overflows in the vl::loadDAT and vl::isDAT functions to prevent arbitrary code execution. As a temporary workaround, restrict the use of these functions when handling DAT files from untrusted sources.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2010-0994

Affected Products

Visualization Library

PT-2010-2717 · Unknown · Visualization Library

CVE-2010-0994

Weakness Enumeration

Related Identifiers

Affected Products

References · 5