Lucene search

[email protected]CVE-2004-1265

HistoryJan 10, 2005 - 5:00 a.m.

CVE-2004-1265

2005-01-1005:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-1265

buffer overflow

3dsimp.cpp

convex 3d

remote code execution

3ds file

8.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.037 Low

EPSS

Percentile

91.7%

JSON

Buffer overflow in the readObjectChunk function in 3dsimp.cpp for the convex-tool program in Convex 3D 0.8pre1 allows remote attackers to execute arbitrary code via a crafted 3DS file.

CPENameOperatorVersion
alex_dunaevsky:convex_3dalex dunaevsky convex 3deq0.8_pre1

CPE	Name	Operator	Version
alex_dunaevsky:convex_3d	alex dunaevsky convex 3d	eq	0.8_pre1

References

tigger.uic.edu/~jlongs2/holes/convex3d.txt

exchange.xforce.ibmcloud.com/vulnerabilities/18601

8.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.037 Low

EPSS

Percentile

91.7%

JSON

Related for CVE-2004-1265

cvelist1