CVE-2017-12101

Name of the Vulnerable Software and Affected Versions Blender version 2.78c

Description An integer overflow exists in the 'modifier mdef compact influences' functionality, allowing for a buffer overflow that can enable code execution under the context of the application. This issue can be triggered by convincing a user to open a specially crafted .blend file, potentially permitting a remote attacker to execute arbitrary code.

Recommendations For Blender version 2.78c, consider avoiding the use of the modifier mdef compact influences functionality until a patch is available. As a temporary workaround, restrict the opening of .blend files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.