3 matches found
CVE-2020-28596
A stack-based buffer overflow vulnerability exists in the Objparser::objparse functionality of Prusa Research PrusaSlicer 2.2.0 and Master commit 4b040b856. A specially crafted obj file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2020-28596
A stack-based buffer overflow vulnerability exists in the Objparser::objparse functionality of Prusa Research PrusaSlicer 2.2.0 and Master commit 4b040b856. A specially crafted obj file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2020-28596
PrusaSlicer 2.2.0 and Master (commit 4b040b856) are affected by a stack-based buffer overflow in ObjParser::objparse(). A fixed-size stack buffer (buf) is fed by fread in a loop, with insufficient bounds checking, enabling potential code execution via a crafted .obj file. The vulnerability is evi...