Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4552

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2012-4552
Last Modified 25 Jun 2013 11:14:09
Published 18 Nov 2012 06:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4552

Summary

Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file.

Vulnerable Systems

Application

  • Steve J Baker Plib 1.8.5


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=871187

OSVDB - 87001

MLIST - [oss-security] 20121029 Re: CVE Request: PLIB 1.8.5 ssg/ssgParser.cxx Buffer Overflow

FEDORA - FEDORA-2012-17517

FEDORA - FEDORA-2012-17465

FEDORA - FEDORA-2012-17482

SUSE - openSUSE-SU-2012:1506

SUSE - openSUSE-SU-2013:0146

SECUNIA - 51340


Last Updated: 27 May 2016 10:51:48