Stack-based Buffer Overflow Vulnerability in PLIB Software by PLIB Developers
CVE-2012-4552

Currently unrated

Key Information:

Vendor: Steve J Baker
Status: Plib
Vendor: CVE Published:; 18 November 2012

🔔 Create Steve J Baker Vulnerability Alert

What is CVE-2012-4552?

The vulnerability in PLIB 1.8.5 involves a stack-based buffer overflow in the error handling function located in ssg/ssgParser.cxx. This flaw permits remote attackers to execute arbitrary code by exploiting crafted 3D model files, specifically an .ase file, that generate excessively long error messages. This could lead to potential system compromise if the exploited files are processed.

References

http://www.osvdb.org/87001

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/51340

third-party-advisoryx_refsource_SECUNIA

http://www.openwall.com/lists/oss-security/2012/10/29/9

mailing-listx_refsource_MLIST

EPSS Score

9% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 18, 2012
Vulnerability Reserved
Aug 21, 2012

CVE-2012-4552 Data

JSON