CVE-2017-12104

Name of the Vulnerable Software and Affected Versions Blender version 2.78c

Description An integer overflow exists in the way Blender draws a Particle object, which can be exploited by a specially crafted .blend file to cause a buffer overflow, potentially allowing for code execution under the context of the application. This can be triggered if a user opens the malicious file or uses it as a library.

Recommendations For Blender version 2.78c, consider avoiding the use of specially crafted .blend files that could exploit the integer overflow in the Particle object drawing functionality until a patch is available. As a temporary workaround, restrict the use of .blend files from untrusted sources to minimize the risk of exploitation.