Stack overflow

Due to lack of proper memory management, when a victim opens a manipulated Jupiter Tesselation .jt, JTReader.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...

Stack overflow

Due to lack of proper memory management, when a victim opens a manipulated Scalable Vector Graphic .svg, svg.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...

Stack overflow

Due to lack of proper memory management, when a victim opens a manipulated AutoCAD .dxf, TeighaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...

Stack overflow

Due to lack of proper memory management, when a victim opens a manipulated SolidWorks Drawing .slddrw, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...

Stack overflow

Due to lack of proper memory management, when a victim opens a manipulated Visual Design Stream .vds, vds.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...

Stack overflow

Due to lack of proper memory management, when a victim opens a manipulated Visual Design Stream .vds, MataiPersistence.dll file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...

Stack overflow

Due to lack of proper memory management, when a victim opens a manipulated Enhanced Metafile .emf, emf.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow o...

CVE-2022-41170

SAP 3D Visual Enterprise Author is affected by CVE-2022-41170 via the parsing of MODEL files in CATIA4 Part (.model, CatiaTranslator.exe). The vulnerability is described as a write past end of an allocated buffer (out-of-bounds write) in the MODEL parser, which can lead to remote code execution. ...

CVE-2022-39806

Summary of CVE-2022-39806 : The vulnerability affects SAP 3D Visual Enterprise Author (version 9) and specifically the parsing/handling of SolidWorks Drawing files (.slddrw) via CoreCadTranslator.exe. Root cause: improper memory management leading to a stack-based overflow or reuse of a dangling ...

CVE-2022-41201

Due to lack of proper memory management, when a victim opens a manipulated Right Hemisphere Binary .rh, rh.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overfl...

CVE-2022-41187

SAP 3D Visual Enterprise Viewer (version 9) contains a memory-management flaw in OBJ file parsing (ObjTranslator.exe). A crafted .obj file can trigger remote code execution via stack-based overflow or reuse of a dangling pointer. Remediation details are not explicit in the provided CVE data; a PT...

CVE-2022-41195

Due to lack of proper memory management, when a victim opens a manipulated EAAmiga Interchange File Format .iff, 2d.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-bas...

CVE-2022-41170

Due to lack of proper memory management, when a victim opens a manipulated CATIA4 Part .model, CatiaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...

CVE-2022-41177

Due to lack of proper memory management, when a victim opens a manipulated Iges Part and Assembly .igs, .iges, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload force...

CVE-2022-41167

Due to lack of proper memory management, when a victim opens a manipulated AutoCAD .dwg, TeighaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...

CVE-2022-39806

Due to lack of proper memory management, when a victim opens a manipulated SolidWorks Drawing .slddrw, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...

CVE-2022-41168

Due to lack of proper memory management, when a victim opens a manipulated CATIA5 Part .catpart, CatiaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...

CVE-2022-41175

Due to lack of proper memory management, when a victim opens a manipulated Enhanced Metafile .emf, emf.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow o...

CVE-2022-41172

Due to lack of proper memory management, when a victim opens a manipulated AutoCAD .dxf, TeighaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...

CVE-2022-41201

Due to lack of proper memory management, when a victim opens a manipulated Right Hemisphere Binary .rh, rh.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overfl...