CVE-2013-3928

Stack-based buffer overflow in the ReadFile function in fltBMP.dll in Chasys Draw IES before 4.11.02 allows remote attackers to execute arbitrary code via crafted biPlanes and biBitCount fields in a BMP file...

Stack overflow

Stack-based buffer overflow in the ReadFile function in fltBMP.dll in Chasys Draw IES before 4.11.02 allows remote attackers to execute arbitrary code via crafted biPlanes and biBitCount fields in a BMP file...

CVE-2013-3928

CVE-2013-3928 : A stack-based buffer overflow exists in the ReadFile function of flt_BMP.dll used by Chasys Draw IES (BMP parsing). The flaw allows remote attackers to trigger arbitrary code execution by supplying a specially crafted BMP file (affecting versions prior to 4.11.02). Confirmed affec...

Chasys Draw IES Buffer Overflow Vulnerability

This Metasploit module exploits a buffer overflow vulnerability found in Chasys Draw IES version 4.10.01. The vulnerability exists in the module fltBMP.dll, while parsing BMP files, where the ReadFile function is used to store user provided data on the stack in a insecure way. It results in...

Chasys Draw IES Buffer Overflow

This module exploits a buffer overflow vulnerability found in Chasys Draw IES version 4.10.01. The vulnerability exists in the module fltBMP.dll, while parsing BMP files, where the ReadFile function is used to store user provided data on the stack in an insecure way. It results in arbitrary code...