2 matches found
CVE-2012-4552
PLIB 1.8.5 is affected by a stack-based buffer overflow in the error function (ssg/ssgParser.cxx) that can be triggered by a crafted 3D model file (e.g., .ase), allowing remote code execution. Public advisories confirm the issue and show remediation guidance; upgrades to newer PLIB versions fix t...
CVE-2011-4620
The CVE-2011-4620 vulnerability in PLIB 1.8.5 (used by TORCS 1.3.1 and other products) is a buffer overflow in the ulSetError function (src/util/ulError.cxx) triggered by a long error message, enabling user‑provided remote input to corrupt memory and potentially execute arbitrary code. Public adv...