RSS   Vulnerabilities for 'Common data format'   RSS

2009-08-18
 
CVE-2009-2850

CWE-119
 

 
Multiple buffer overflows in NASA Common Data Format (CDF) allow context-dependent attackers to execute arbitrary code, as demonstrated using (1) an array index error in the ReadAEDRList64 function, and other errors in the (2) SearchForRecord_r_64, (3) LastRecord64, (4) CDFsel64, and other unspecified functions.

 
2008-05-06
 
CVE-2008-2080

CWE-119
 

 
Stack-based buffer overflow in the Read32s_64 function in src/lib/cdfread64.c in the NASA Goddard Space Flight Center Common Data Format (CDF) library before 3.2.1 allows context-dependent attackers to execute arbitrary code via a .cdf file with crafted length tags.

 


Copyright 2024, cxsecurity.com

 

Back to Top