CVE-2008-5263

CVE-2008-5263 affects ksquirrel-libs 0.8.0. The vulnerability lies in the function mt_codec::getHdrHead within kernel/kls_hdr/fmt_codec_hdr.cpp, where boundary/stack handling can be exploited to cause stack-based buffer overflows when processing crafted Radiance RGBE images (*.hdr). This can allo...

CVE-2008-5263

Multiple stack-based buffer overflows in the mtcodec::getHdrHead function in kernel/klshdr/fmtcodechdr.cpp in ksquirrel-libs 0.8.0 allow context-dependent attackers to execute arbitrary code via a crafted Radiance RGBE image aka .hdr file...

Secunia Research: ksquirrel-libs Radiance RGBE Buffer Overflows

====================================================================== Secunia Research 25/02/2009 - ksquirrel-libs Radiance RGBE Buffer Overflows - ====================================================================== Table of Contents Affected...

ksquirrel-libs库RGBE文件解析栈溢出漏洞

BUGTRAQ ID: 33902 CVECAN ID: CVE-2008-5263 ksquirrel-libs是一组KSquirrel的图形解码库。 ksquirrel-libs库的kernel/klshdr/fmtcodechdr.cpp文件中的mtcodec::getHdrHead函数存在栈溢出漏洞，如果用户受骗使用链接到该库的应用程序打开了特制的Radiance RGBE（.hdr）文件的话，就可以触发这个溢出，导致执行任意代码。 Baryshev Dmitry ksquirrel-libs 0.8 厂商补丁： Baryshev Dmitry ---------------...