3 matches found
CVE-2019-10984
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that causes the program to mishandle pointers...
Red Lion Crimson Type Confusion (CVE-2019-10996; CVE-2019-10984)
A type confusion vulnerability exists in Red Lion Crimson. Successful exploitation of this vulnerability could result in the execution of arbitrary code in the context of the current user...
CVE-2019-10984
CVE-2019-10984 affects Red Lion Crimson (versions 3.0 and earlier; 3.1 before 3112.00). Root cause: uninitialized pointer in CD3 file parsing leading to arbitrary code execution. Exploitation details in sources indicate remote code execution via a specially crafted input file (and in some reports...