24 matches found
EUVD-2017-12043
Malware in sbrugna...
EUVD-2017-3689
Malware in sbrugna...
CVE-2017-2905
An exploitable integer overflow exists in the bmp loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.bmp' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
CVE-2017-2906
An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created '.avi' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...
CVE-2017-12102
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
CVE-2017-12104
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c draws a Particle object. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An...
CVE-2017-12102
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
Integer overflow
An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created '.avi' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...
CVE-2017-12102
CVE-2017-12102 refers to an exploitable integer overflow in Blender 2.78c where the conversion of curves to polygons can overflow, potentially causing a buffer overflow and code execution when a user opens a crafted .blend file or uses it as a library. Public records note this vulnerability along...
CVE-2017-12099
An exploitable integer overflow exists in the upgrade of the legacy Mesh attribute 'tface' of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...
CVE-2017-2908
Blender 2.78c contains an exploitable integer overflow in the thumbnail generation path (triggered while rendering a .blend in File->Open dialog), leading to a buffer overflow and potential code execution under the application. Public advisories (e.g., Debian Mageia/OpenVAS records) show this ...
CVE-2017-2905
CVE-2017-2905 affects Blender 2.78c, where an exploitable integer overflow in the BMP loading functionality can trigger a buffer overflow and execute code. A specially crafted BMP file could be provided as an asset via Blender’s sequencer to a user, leading to potential code execution in the appl...
CVE-2017-12105
Blender vulnerability CVE-2017-12105 (and related CVEs) arises from an integer overflow in applying a specific object modifier to a Mesh, leading to a buffer overflow and potential code execution when a crafted .blend is opened or used as a library. Affects Blender versions around v2.78c (and old...
CVE-2017-12102
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...
CVE-2017-12081
CVE-2017-12081 : Blender 2.78c contains an exploitable integer overflow during the upgrade of a legacy Mesh attribute, causing a buffer overflow and potential code execution when a crafted .blend file is opened or used as a library. Affected: Blender 2.78c; root cause: integer overflow in Mesh at...
CVE-2017-12104
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c draws a Particle object. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An...
CVE-2017-2901
Blender 2.78c is affected by CVE-2017-2901 due to an integer overflow in the IRIS loader, causing a buffer overflow that can lead to code execution when a user opens a crafted .iris asset via the sequencer. This is a local vulnerability with user interaction required and is addressed by upgrading...
CVE-2017-12103
CVE-2017-12103 affects Blender, specifically v2.78c, where an integer overflow in converting text rendered as a font into a curve can cause a buffer overflow and remote code execution under the application context. The issue can be triggered by opening a crafted .blend file or using it as a libra...
CVE-2017-2901
An exploitable integer overflow exists in the IRIS loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.iris' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the applicatio...
Blender mesh_calc_modifiers eModifierTypeType_OnlyDeform Integer Overflow Code Execution Vulnerability
Summary An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c applies a particular object modifier to a Mesh. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the...