Orbital Viewer buffer overflow

2010-03-24T00:00:00
ID SAINT:AA0277DAE5436F69A6771D4B30CA53B0
Type saint
Reporter SAINT Corporation
Modified 2010-03-24T00:00:00

Description

Added: 03/24/2010
CVE: CVE-2010-0688
BID: 38436
OSVDB: 62580

Background

Orbital Viewer is a program for viewing atomic and molecular orbitals.

Problem

A buffer overflow vulnerability in Orbital Viewer allows command execution when a user opens a specially crafted .orb file.

Resolution

Do not open .orb files from unknown sources.

References

<http://secunia.com/advisories/38720>

Limitations

Exploit works on Orbital Viewer 1.04 and requires a user to open the exploit file in Orbital Viewer.

Platforms

Windows