PT-2018-18653 · Delta · Pmsoft

Ghirmay Desta

Published

2018-04-30

Updated

2020-09-29

CVE-2018-8839

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Delta PMSoft versions 2.10 and prior

Description The issue allows a .ppm file to introduce a value larger than is readable by PMSoft's fixed-length stack buffer, causing the buffer to be overwritten. This may allow arbitrary code execution or cause the application to crash.

Recommendations For Delta PMSoft versions 2.10 and prior, update to at least PMSoft v2.11 or the latest available version.

Fix

Stack Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-787

Related Identifiers

CVE-2018-8839

Affected Products

Pmsoft

PT-2018-18653 · Delta · Pmsoft

CVE-2018-8839

Weakness Enumeration

Related Identifiers

Affected Products

References · 4