CVE-2018-18983 – INVT Electric VT-Designer File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-18983
VT-Designer Version 2.1.7.31 is vulnerable by the program reading the contents of a file (which is already in memory) into another heap-based buffer, which may cause the program to crash or allow remote code execution. VT-Designer, en su versión 2.1.7.31, es vulnerable a que el programa lea el contenido de un archivo (que ya está en la memoria) en otro búfer basado en memoria dinámica (heap), lo que podría provocar que el programa se cierre inesperadamente o permita la ejecución remota de código. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of INVT VT-Designer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of pm3 files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. • http://www.securityfocus.com/bid/106071 https://ics-cert.us-cert.gov/advisories/ICSA-18-333-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-18987 – INVT Electric VT-Designer PM3 File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-18987
VT-Designer Version 2.1.7.31 is vulnerable by the program populating objects with user supplied input via a file without first checking for validity, allowing attacker supplied input to be written to known memory locations. This may cause the program to crash or allow remote code execution. VT-Designer, en su versión 2.1.7.31, es vulnerable a que el programa nutra objetos con entradas proporcionadas por el usuario sin comprobar primero su validez, lo que permite que las entradas proporcionadas por el atacante se escriban en ubicaciones de memoria conocidas. Esto podría provocar que el programa se cierre inesperadamente o provoque la ejecución remota de código. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of INVT VT-Designer. • http://www.securityfocus.com/bid/106071 https://ics-cert.us-cert.gov/advisories/ICSA-18-333-01 • CWE-502: Deserialization of Untrusted Data •