Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-88952
HistoryOct 13, 2022 - 12:00 a.m.

SAP 3D Visual Enterprise Viewer .dxf buffer overflow vulnerability

2022-10-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
sap
visual enterprise viewer
buffer overflow
vulnerability
remote execution
memory management
teighatranslator.exe

EPSS

0.002

Percentile

61.2%

JSON

SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP (Germany). The software supports publishing 2D and 3D scenes in all industry-standard desktop applications and supports separate installations as standalone executables and ActiveX spaces.SAP 3D Visual Enterprise Viewer versions prior to 9.0 suffer from a buffer overflow vulnerability, which stems from a lack of proper memory management and can be exploited by attackers via specially crafted files (.dxf, TeighaTranslator.exe ) to remotely execute code when the payload forces a stack-based overflow or reuses a dangling pointer to an overwritten space in memory.

Related

nvd 1
prion 1
cvelist 1
cve 1
zdi 3
nvd
nvd
CVE-2022-41190
2022-10-11 21:15:21
prion
prion
Stack overflow
2022-10-11 21:15:00
cvelist
cvelist
CVE-2022-41190
2022-10-11 00:00:00
cve
cve
CVE-2022-41190
2022-10-11 21:15:21
zdi
zdi
SAP 3D Visual Enterprise Viewer DXF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
2022-11-03 00:00:00
SAP 3D Visual Enterprise Viewer DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-11-03 00:00:00
SAP 3D Visual Enterprise Viewer DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-11-03 00:00:00

EPSS

0.002

Percentile

61.2%

JSON
Related for CNVD-2022-88952
nvd1prion1cvelist1cve1zdi3