CVE-2008-2542 – NASA Ames Research Center BigView 1.8 - '.PNM' Stack Buffer Overflow (PoC)

https://notcve.org/view.php?id=CVE-2008-2542

Stack-based buffer overflow in the getline function in Ppm/ppm.C in NASA Ames Research Center BigView 1.8 allows user-assisted remote attackers to execute arbitrary code via a crafted PNM file. Desbordamiento de búfer basado en pila en la función getline en Ppm/ppm.C en NASA Ames Research Center BigView 1.8, permite a atacantes remotos asistidos por el usuario ejecutar código arbitrario a través de un fichero PNM. • https://www.exploit-db.com/exploits/31872 http://secunia.com/advisories/30546 http://securityreason.com/securityalert/3924 http://www.coresecurity.com/?action=item&id=2304 http://www.securityfocus.com/archive/1/493112/100/0/threaded http://www.securityfocus.com/bid/29517 http://www.vupen.com/english/advisories/2008/1745/references https://exchange.xforce.ibmcloud.com/vulnerabilities/42847 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •