CVE-2012-2091
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple buffer overflows in FlightGear 2.6 and earlier and SimGear 2.6 and earlier allow user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a (1) long string in a rotor tag of an aircraft xml model to the Rotor::getValueforFGSet function in src/FDM/YASim/Rotor.cpp or (2) a crafted UDP packet to the SGSocketUDP::read function in simgear/simgear/simgear/io/sg_socket_udp.cxx.
Múltiples desbordamientos de búfer en FlightGear v2.6 y versiones anteriores y SimGear v2.6 y versiones anteriores, permite a atacantes remotos causar una denegación de servicio (caída) y posiblemente permite ejecutar código arbitrario a través de (1)una cadena larga en una etiqueta del rotor de un modelo de aeronave en xml para la función Rotor::getValueforFGSet en src/FDM/YASim/Rotor.cpp o (2) un paquete UDP modificado para la función en SGSocketUDP::read en simGear/simGear/simGear/io/sg_socket_udp.cxx.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2012-04-04 CVE Reserved
- 2012-06-17 CVE Published
- 2024-07-06 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (9)
URL | Tag | Source |
---|---|---|
http://sourceforge.net/mailarchive/message.php?msg_id=28957051 | Mailing List | |
http://sourceforge.net/mailarchive/message.php?msg_id=29012174 | Mailing List | |
http://www.openwall.com/lists/oss-security/2012/04/10/13 | Mailing List | |
https://bugzilla.redhat.com/show_bug.cgi?id=811617 | X_refsource_misc |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Flightgear Search vendor "Flightgear" | Flightgear Search vendor "Flightgear" for product "Flightgear" | <= 2.6.0 Search vendor "Flightgear" for product "Flightgear" and version " <= 2.6.0" | - |
Affected
| ||||||
Flightgear Search vendor "Flightgear" | Flightgear Search vendor "Flightgear" for product "Flightgear" | 1.9.1 Search vendor "Flightgear" for product "Flightgear" and version "1.9.1" | - |
Affected
| ||||||
Flightgear Search vendor "Flightgear" | Flightgear Search vendor "Flightgear" for product "Flightgear" | 2.0.0 Search vendor "Flightgear" for product "Flightgear" and version "2.0.0" | - |
Affected
| ||||||
Simgear Search vendor "Simgear" | Simgear Search vendor "Simgear" for product "Simgear" | <= 2.6.0 Search vendor "Simgear" for product "Simgear" and version " <= 2.6.0" | - |
Affected
| ||||||
Simgear Search vendor "Simgear" | Simgear Search vendor "Simgear" for product "Simgear" | 1.9.1 Search vendor "Simgear" for product "Simgear" and version "1.9.1" | - |
Affected
| ||||||
Simgear Search vendor "Simgear" | Simgear Search vendor "Simgear" for product "Simgear" | 2.0.0 Search vendor "Simgear" for product "Simgear" and version "2.0.0" | - |
Affected
|