Lucene search
China National Vulnerability DatabaseCNVD-2022-88934HistoryOct 13, 2022 - 12:00 a.m.
SAP 3D Visual Enterprise Author .cur Buffer Overflow Vulnerability
2022-10-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
sap 3d visual enterprise author
buffer overflow
vulnerability
memory management
remote code execution
specially crafted files
stack-based overflow
dangling pointer
0.002 Low
EPSS
Percentile
52.9%
SAP 3D Visual Enterprise Author is a desktop application from SAP Germany for managing 2D, 3D, animation, video and audio assets. SAP 3D Visual Enterprise Author version 9 is vulnerable to a buffer overflow vulnerability that stems from a lack of proper memory management. An attacker could exploit the vulnerability to remotely execute code via specially crafted files (.cur, ico.x3d) when the payload forces a stack-based overflow or reuses a dangling pointer to an overwritten space in memory.
Related
zdi
zdi
prion
prion
Stack overflow
2022-10-11 21:15:00
cve
cve
CVE-2022-41184
2022-10-11 21:15:20
cvelist
cvelist
CVE-2022-41184
2022-10-11 00:00:00
nvd
nvd
CVE-2022-41184
2022-10-11 21:15:20