FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

plib -- stack-based buffer overflow

Affected packages
plib < 1.8.5_4

Details

VuXML ID c72a2494-c08b-11e2-bb21-083e8ed0f47b
Discovery 2012-10-09
Entry 2013-05-19

CVE reports:

Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file.

References

Bugtraq ID 55839
CVE Name CVE-2012-4552
Message http://www.openwall.com/lists/oss-security/2012/10/29/8