2 matches found
CVE-2023-34289 Ashlar-Vellum Cobalt Heap-based Buffer Overflow Remote Code Execution Vulnerability
Ashlar-Vellum Cobalt Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit a...
CVE-2023-34289
Ashlar-Vellum Cobalt is affected by a heap-based buffer overflow in AR file parsing that can enable remote code execution. The vulnerability stems from improper validation of the length of user-supplied data before copying it to a heap buffer, allowing an attacker to run code in the current proce...