CVE-2012-10057

Lattice Semiconductor ispVM System v18.0.2 contains a buffer overflow vulnerability in its handling of .xcf project files. When parsing the version attribute of the ispXCF XML tag, the application fails to properly validate input length, allowing a specially crafted file to overwrite memory on th...

CVE-2012-10057 Lattice Semiconductor ispVM System 18.0.2 XCF File Handling Buffer Overflow

Lattice Semiconductor ispVM System v18.0.2 contains a buffer overflow vulnerability in its handling of .xcf project files. When parsing the version attribute of the ispXCF XML tag, the application fails to properly validate input length, allowing a specially crafted file to overwrite memory on th...

CVE-2012-10057

CVE-2012-10057 affects Lattice ispVM System v18.0.2 and is due to a buffer overflow when parsing the version attribute of the ispXCF XML tag in .xcf project files. This local, no-privilege path enables arbitrary code execution when a crafted .xcf is opened. Exploitation code/module exists (e.g., ...

Lattice Semiconductor ispVM System 安全漏洞

Lattice Semiconductor ispVM System is a programming and debugging software toolset from Lattice Semiconductor, USA. A security vulnerability exists in Lattice Semiconductor ispVM System version 18.0.2, which originates from a buffer overflow when processing .xcf files and could lead to the...

PT-2025-33092 · Lattice Semiconductor · Ispvm System

Name of the Vulnerable Software and Affected Versions: Lattice Semiconductor ispVM System version 18.0.2 Description: Lattice Semiconductor ispVM System version 18.0.2 contains a buffer overflow issue in the handling of .xcf project files. When parsing the version attribute of the ispXCF XML tag,...

ispVM System XCF File Handling Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Lattice Semiconductor ispVM System XCF File Handling Overflow

A stack buffer overflow vulnerability has been reported in ispVM System. The vulnerability is due to the improper validation of specially crafted XCF files. A remote attacker can exploit this issue by enticing the victim to accept and open a specially crafted XCF file. Successful exploitation wou...

ispVM System - '.XCF' File Handling Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "ispVM System XCF...

Lattice Semiconductor ispVM System XCF File Handling Overflow

This module exploits a vulnerability found in ispVM System 18.0.2. Due to the way ispVM handles .xcf files, it is possible to cause a buffer overflow with a specially crafted file, when a long value is supplied for the version attribute of the ispXCF tag. It results in arbitrary code execution...

ispVM System XCF File Handling Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "ispVM System XCF...

ispVM System XCF File Handling Overflow

Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...