1188 matches found
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Scalable Vector Graphic .svg, svg.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated EAAmiga Interchange File Format .iff, 2d.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-bas...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Visual Design Stream .vds, vds.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Enhanced Metafile .emf, emf.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow o...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Visual Design Stream .vds, MataiPersistence.dll file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...
CVE-2022-41170
SAP 3D Visual Enterprise Author is affected by CVE-2022-41170 via the parsing of MODEL files in CATIA4 Part (.model, CatiaTranslator.exe). The vulnerability is described as a write past end of an allocated buffer (out-of-bounds write) in the MODEL parser, which can lead to remote code execution. ...
CVE-2022-39806
Summary of CVE-2022-39806 : The vulnerability affects SAP 3D Visual Enterprise Author (version 9) and specifically the parsing/handling of SolidWorks Drawing files (.slddrw) via CoreCadTranslator.exe. Root cause: improper memory management leading to a stack-based overflow or reuse of a dangling ...
SAP 3D Visual Enterprise Author 缓冲区错误漏洞
SAP 3D Visual Enterprise Author is a desktop application for managing 2D, 3D, animation, video and audio assets from SAP. A buffer overflow vulnerability exists in SAP 3D Visual Enterprise Author version 9, which stems from a lack of proper memory management and can be exploited by an attacker to...
PT-2022-25700 · Sap · Sap 3D Visual Enterprise Author
Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue arises due to improper memory management when handling manipulated Iges Part and Assembly files. This can lead to a Remote Code Execution when a payload forces a stack-based...
CVE-2022-41187
SAP 3D Visual Enterprise Viewer (version 9) contains a memory-management flaw in OBJ file parsing (ObjTranslator.exe). A crafted .obj file can trigger remote code execution via stack-based overflow or reuse of a dangling pointer. Remediation details are not explicit in the provided CVE data; a PT...
PT-2022-25718 · Sap · Sap 3D Visual Enterprise Viewer
Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Viewer version 9 Description: The issue arises due to improper memory management. When a victim opens a manipulated VRML Worlds .wrl, vrml.x3d file from untrusted sources, it can trigger a Remote Code Execution. This...
SAP 3D Visual Enterprise Author 缓冲区错误漏洞
SAP 3D Visual Enterprise Author is a desktop application for managing 2D, 3D, animation, video and audio assets from SAP. A buffer error vulnerability exists in SAP 3D Visual Enterprise Author version 9, which stems from a lack of proper memory management, and can be exploited by an attacker to...
PT-2022-25689 · Autodesk +1 · Autocad +1
Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue arises due to inadequate memory management. When a manipulated AutoCAD .dwg file from untrusted sources is opened in SAP 3D Visual Enterprise Author, it can trigger Remote Code...
CVE-2022-39806
Due to lack of proper memory management, when a victim opens a manipulated SolidWorks Drawing .slddrw, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...
CVE-2022-41195
Due to lack of proper memory management, when a victim opens a manipulated EAAmiga Interchange File Format .iff, 2d.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-bas...
CVE-2022-41167
Due to lack of proper memory management, when a victim opens a manipulated AutoCAD .dwg, TeighaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...
CVE-2022-41170
Due to lack of proper memory management, when a victim opens a manipulated CATIA4 Part .model, CatiaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
CVE-2022-41168
Due to lack of proper memory management, when a victim opens a manipulated CATIA5 Part .catpart, CatiaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
CVE-2022-41201
Due to lack of proper memory management, when a victim opens a manipulated Right Hemisphere Binary .rh, rh.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overfl...
CVE-2022-41175
Due to lack of proper memory management, when a victim opens a manipulated Enhanced Metafile .emf, emf.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow o...