Integer Overflow Vulnerability in Blender Open-Source 3D Creation Suite
CVE-2017-2901
8.8HIGH
What is CVE-2017-2901?
An exploitable integer overflow in the IRIS loading functionality of Blender allows attackers to use specially crafted '.iris' files to trigger a buffer overflow. This could lead to arbitrary code execution within the context of the application. Users can be manipulated into loading malicious files as assets through the sequencer, putting their systems at risk.
Affected Version(s)
Blender v2.78c
