CVE-2023-34302
CVE-2023-34302 describes a stack-based buffer overflow in Ashlar-Vellum Cobalt’s CO file parsing. The flaw stems from insufficient validation of the length of user-supplied data before copying it to a stack-based buffer, enabling a remote attacker to execute arbitrary code in the current process ...