PT-2013-2564 · Erdas · Erdas Apollo Ecwp Plugin

Published

2013-04-25

Updated

2013-05-06

CVE-2013-0728

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions ERDAS APOLLO ECWP plugin versions prior to 13.00.0001

Description The issue is related to multiple stack-based buffer overflows in the NCSAddOn.dll component of the ERDAS APOLLO ECWP plugin. This allows remote attackers to execute arbitrary code via a long property value.

Recommendations For versions prior to 13.00.0001, update to version 13.00.0001 or later to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2013-0728

Affected Products

Erdas Apollo Ecwp Plugin

PT-2013-2564 · Erdas · Erdas Apollo Ecwp Plugin

CVE-2013-0728

Weakness Enumeration

Related Identifiers

Affected Products

References · 2