Eric3 Project File Processing Arbitrary Code Execution

2005-09-17T23:19:41
ID OSVDB:19485
Type osvdb
Reporter OSVDB
Modified 2005-09-17T23:19:41

Description

Vulnerability Description

Eric Integrated Development Environment(Eric3) contains a flaw that may allow arbitrary code execution. The issue occurs when processing project files. No further details have been provided.

Solution Description

Upgrade to version 3.7.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Eric Integrated Development Environment(Eric3) contains a flaw that may allow arbitrary code execution. The issue occurs when processing project files. No further details have been provided.

References:

Vendor URL: http://www.die-offenbachs.de/detlev/eric3.html Vendor Specific News/Changelog Entry: http://sourceforge.net/project/shownotes.php?group_id=119070&release_id=357174 Vendor Specific Advisory URL Security Tracker: 1014947 Secunia Advisory ID:16993 Secunia Advisory ID:17269 CVE-2005-3068