Buffer Overflow Vulnerability in Microchip MPLAB IDE
CVE-2009-1608

Currently unrated

Key Information:

Vendor: Microchip
Status: Mplab Ide
Vendor: CVE Published:; 11 May 2009

What is CVE-2009-1608?

Multiple buffer overflow vulnerabilities exist in Microchip MPLAB IDE versions 8.30 and potentially earlier. These vulnerabilities can be exploited by user-assisted remote attackers through specially crafted .MCP project files containing excessively long fields such as FILE_INFO and CAT_FILTERS, resulting in arbitrary code execution on the affected system.

References

http://osvdb.org/54370

vdb-entryx_refsource_OSVDB

https://exchange.xforce.ibmcloud.com/vulnerabilities/50419

vdb-entryx_refsource_XF

http://secunia.com/advisories/35054

third-party-advisoryx_refsource_SECUNIA

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 11, 2009
Vulnerability Reserved
May 11, 2009