2086 matches found
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Visual Design Stream .vds, MataiPersistence.dll file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated AutoCAD .dxf, TeighaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...
Stack overflow
Due to lack of proper memory management, when a victim opens manipulated Computer Graphics Metafile .cgm, CgmCore.dll file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, a Remote Code Execution can be triggered when payload forces a stack-based overflow and or a...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Jupiter Tesselation .jt, JTReader.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Encapsulated Post Script .eps, ai.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Visual Design Stream .vds, vds.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Scalable Vector Graphic .svg, svg.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
CVE-2022-41177
Due to lack of proper memory management, when a victim opens a manipulated Iges Part and Assembly .igs, .iges, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload force...
CVE-2022-41170
SAP 3D Visual Enterprise Author is affected by CVE-2022-41170 via the parsing of MODEL files in CATIA4 Part (.model, CatiaTranslator.exe). The vulnerability is described as a write past end of an allocated buffer (out-of-bounds write) in the MODEL parser, which can lead to remote code execution. ...
CVE-2022-41170
Due to lack of proper memory management, when a victim opens a manipulated CATIA4 Part .model, CatiaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
CVE-2022-41201
Due to lack of proper memory management, when a victim opens a manipulated Right Hemisphere Binary .rh, rh.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overfl...
CVE-2022-39806
Summary of CVE-2022-39806 : The vulnerability affects SAP 3D Visual Enterprise Author (version 9) and specifically the parsing/handling of SolidWorks Drawing files (.slddrw) via CoreCadTranslator.exe. Root cause: improper memory management leading to a stack-based overflow or reuse of a dangling ...
CVE-2022-41195
Due to lack of proper memory management, when a victim opens a manipulated EAAmiga Interchange File Format .iff, 2d.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-bas...
CVE-2022-41201
Due to lack of proper memory management, when a victim opens a manipulated Right Hemisphere Binary .rh, rh.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overfl...
CVE-2022-41187
SAP 3D Visual Enterprise Viewer (version 9) contains a memory-management flaw in OBJ file parsing (ObjTranslator.exe). A crafted .obj file can trigger remote code execution via stack-based overflow or reuse of a dangling pointer. Remediation details are not explicit in the provided CVE data; a PT...
CVE-2022-41175
Due to lack of proper memory management, when a victim opens a manipulated Enhanced Metafile .emf, emf.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow o...
CVE-2022-39806
Due to lack of proper memory management, when a victim opens a manipulated SolidWorks Drawing .slddrw, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...
CVE-2022-41167
Due to lack of proper memory management, when a victim opens a manipulated AutoCAD .dwg, TeighaTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflo...