Stack-Based Buffer Overflow in Microchip MPLAB IDE
CVE-2009-1674

Currently unrated

Key Information:

Vendor: Microchip
Status: Mplab Ide
Vendor: CVE Published:; 18 May 2009

What is CVE-2009-1674?

A stack-based buffer overflow vulnerability exists in Microchip MPLAB IDE 8.30 that could be exploited by remote attackers. The issue is triggered when a long .cof pathname in the [TOOL_SETTINGS] section of a .mcp project file is processed, potentially allowing attackers to execute arbitrary code on the target system. This vulnerability may be related to similar issues identified in other advisories, underscoring the importance of maintaining security best practices and applying relevant security patches.

References

https://www.exploit-db.com/exploits/8656

exploitx_refsource_EXPLOIT-DB

http://secunia.com/advisories/35054

third-party-advisoryx_refsource_SECUNIA

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 18, 2009
Vulnerability Reserved
May 18, 2009