Buffer Overflow Vulnerability in Lattice Diamond Programmer by Lattice Semiconductor
CVE-2012-2614

Currently unrated

Key Information:

Vendor

Lattice Semiconductor

Status
Lattice Diamond Programmer
Vendor
CVE Published:
12 July 2012

What is CVE-2012-2614?

The vulnerability in Lattice Diamond Programmer version 1.4.2 manifests as a buffer overflow in the programmer.exe component. This flaw allows user-assisted remote attackers to exploit a long string in the version attribute of an ispXCF element within an .xcf file. The consequence of this vulnerability includes application crashes and the potential execution of arbitrary code, posing significant risks to system integrity and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.exploit-db.com/exploits/19340
exploitx_refsource_EXPLOIT-DB
http://archives.neohapsis.com/archives/bugtraq/2012-06/01...
mailing-listx_refsource_BUGTRAQ
http://secunia.com/advisories/48431
third-party-advisoryx_refsource_SECUNIA

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.