Name of the Vulnerable Software and Affected Versions The product name cannot be determined. (affected versions not specified)

Description The software contains a heap-buffer-overflow read issue. The crash occurs during the sav parse long variable names record function, which is called by sav parse records pass2, and ultimately by readstat parse sav.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.