37 matches found
EUVD-2017-12043
Malware in sbrugna...
EUVD-2017-3689
Malware in sbrugna...
Blender: Multiple Vulnerabilities
Background Blender is a 3D Creation/Animation/Publishing System. Description Multiple vulnerabilities have been discovered in Blender. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no known...
CVE-2017-2906
An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created '.avi' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...
CVE-2017-2903
An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
CVE-2017-2905
An exploitable integer overflow exists in the bmp loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.bmp' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
CVE-2017-2906
An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created '.avi' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...
CVE-2017-2900
An exploitable integer overflow exists in the PNG loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.png' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
CVE-2017-12102
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
CVE-2017-12104
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c draws a Particle object. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An...
CVE-2017-12102
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
Integer overflow
An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created '.avi' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...
Integer overflow
An exploitable integer overflow exists in the IRIS loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.iris' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the applicatio...
CVE-2017-12105
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c applies a particular object modifier to a Mesh. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context...
CVE-2017-12082
An exploitable integer overflow exists in the 'CustomData' Mesh loading functionality of the Blender open-source 3d creation suite. A .blend file with a specially crafted external data file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the...
CVE-2017-12102
CVE-2017-12102 refers to an exploitable integer overflow in Blender 2.78c where the conversion of curves to polygons can overflow, potentially causing a buffer overflow and code execution when a user opens a crafted .blend file or uses it as a library. Public records note this vulnerability along...
CVE-2017-12086
CVE-2017-12086 affects Blender (open-source 3D suite). The vulnerability is in the BKE_mesh_calc_normals_tessface function, where parsing a crafted .blend file can trigger an integer overflow that leads to a buffer overflow and potential code execution within the application context. User interac...
CVE-2017-2908
Blender 2.78c contains an exploitable integer overflow in the thumbnail generation path (triggered while rendering a .blend in File->Open dialog), leading to a buffer overflow and potential code execution under the application. Public advisories (e.g., Debian Mageia/OpenVAS records) show this ...
CVE-2017-12081
CVE-2017-12081 : Blender 2.78c contains an exploitable integer overflow during the upgrade of a legacy Mesh attribute, causing a buffer overflow and potential code execution when a crafted .blend file is opened or used as a library. Affected: Blender 2.78c; root cause: integer overflow in Mesh at...
CVE-2017-12101
Blender 2.78c contains an exploitable integer overflow in modifier_mdef_compact_influences that can overflow a buffer, allowing code execution when a user opens a crafted .blend file. The vulnerability is user-triggered (via opening a malicious file) and not required to have network access. Publi...