Lucene search
HistoryJul 12, 2012 - 9:55 p.m.
CVE-2012-2614
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
High
EPSS
0.328
Percentile
97.1%
Buffer overflow in programmer.exe in Lattice Diamond Programmer 1.4.2 allows user-assisted remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long string in a version attribute of an ispXCF element in an .xcf file.
Affected configurations
Node
lattice_semiconductorlattice_diamond_programmerMatch1.4.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lattice_semiconductor | lattice_diamond_programmer | 1.4.2 | cpe:2.3:a:lattice_semiconductor:lattice_diamond_programmer:1.4.2:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2012-2614
2012-07-12 21:00:00
cve
cve
CVE-2012-2614
2012-07-12 21:55:05
securityvulns
securityvulns
Lattice Diamond Programmer buffer overflow
2012-06-25 00:00:00
CORE-2012-0530 - Lattice Diamond Programmer Buffer Overflow
2012-06-25 00:00:00
packetstorm
packetstorm
Lattice Diamond Programmer Buffer Overflow
2012-06-22 00:00:00
exploitpack
exploitpack
Lattice Diamond Programmer 1.4.2 - Buffer Overflow (PoC)
2012-06-22 00:00:00
exploitdb
exploitdb
Lattice Diamond Programmer 1.4.2 - Buffer Overflow (PoC)
2012-06-22 00:00:00
seebug
seebug
Lattice Diamond Programmer 1.4.2 - Buffer Overflow
2014-07-01 00:00:00
prion
prion
Buffer overflow
2012-07-12 21:55:00
zdt
zdt
Lattice Diamond Programmer Buffer Overflow
2012-06-22 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
High
EPSS
0.328
Percentile
97.1%
Related for NVD:CVE-2012-2614