PT-2020-7333 · Erdas · Erdas Er Viewer

Published

2020-01-30

Updated

2020-02-06

CVE-2013-0725

CVSS v2.0

6.9

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: ERDAS ER Viewer version 13.0

Description: The issue concerns arbitrary code execution vulnerabilities in the dwmapi.dll and irml.dll libraries.

Recommendations: For ERDAS ER Viewer version 13.0, consider disabling the use of dwmapi.dll and irml.dll libraries until a patch is available. Restrict access to these libraries to minimize the risk of exploitation.

Fix

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2013-0725

Affected Products

Erdas Er Viewer

PT-2020-7333 · Erdas · Erdas Er Viewer

CVE-2013-0725

Weakness Enumeration

Related Identifiers

Affected Products

References · 4