[월:] 2021년 07월

CVE-2021-34320

Posted on by admin

CVE-2021-34320

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll library in affected applications lacks proper validation of user-supplied data when
parsing JT files. This could result in an out of bounds read past the end of an allocated buffer.
An attacker could leverage this vulnerability to leak information in the context of the current process.
(ZDI-CAN-13406)

Source: CVE-2021-34320

CVE-2021-34317

Posted on by admin

CVE-2021-34317

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_loader.dll library in affected applications lacks proper validation of user-supplied data when
parsing PCX files. This could result in an out of bounds write past the fixed-length heap-based buffer.
An attacker could leverage this vulnerability to execute code in the context of the current process.
(ZDI-CAN-13402)

Source: CVE-2021-34317

CVE-2021-34308

Posted on by admin

CVE-2021-34308

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data when
parsing BMP files. This could result in an out of bounds read past the end of an allocated buffer.
An attacker could leverage this vulnerability to leak information in the context of the current process.
(ZDI-CAN-13344)

Source: CVE-2021-34308

CVE-2021-34310

Posted on by admin

CVE-2021-34310

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_loader.dll library in affected applications lacks proper validation of user-supplied data when
parsing TIFF files. This could result in an out of bounds write past the end of an allocated structure.
An attacker could leverage this vulnerability to execute code in the context of the current process.
(ZDI-CAN-13351)

Source: CVE-2021-34310

CVE-2021-34311

Posted on by admin

CVE-2021-34311

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Mono_loader.dll library in affected applications lacks proper validation of user-supplied data when
parsing J2K files. This could result in an out of bounds write past the end of an allocated structure.
An attacker could leverage this vulnerability to execute code in the context of the current process.
(ZDI-CAN-13352)

Source: CVE-2021-34311

CVE-2021-34303

Posted on by admin

CVE-2021-34303

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_Loader.dll library in affected applications lacks proper validation of user-supplied data when
parsing TIFF files. This could result in an out of bounds read past the end of an allocated buffer.
An attacker could leverage this vulnerability to leak information in the context of the current process.
(ZDI-CAN-13198)

Source: CVE-2021-34303

CVE-2021-34309

Posted on by admin

CVE-2021-34309

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_loader.dll library in affected applications lacks proper validation of user-supplied data when
parsing TIFF files. This could result in an out of bounds write past the end of an allocated structure.
An attacker could leverage this vulnerability to execute code in the context of the current process.
(ZDI-CAN-13350)

Source: CVE-2021-34309

CVE-2021-34305

Posted on by admin

CVE-2021-34305

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Gif_loader.dll library in affected applications lacks proper validation of user-supplied data when
parsing GIF files. This could result in an out of bounds write past the end of an allocated structure.
An attacker could leverage this vulnerability to execute code in the context of the current process.
(ZDI-CAN-13340)

Source: CVE-2021-34305

CVE-2021-34302

Posted on by admin

CVE-2021-34302

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data when
parsing BMP files. This could result in an out of bounds read past the end of an allocated buffer.
An attacker could leverage this vulnerability to leak information in the context of the current process.
(ZDI-CAN-13197)

Source: CVE-2021-34302

CVE-2021-34306

Posted on by admin

CVE-2021-34306

A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data when
parsing BMP files. This could result in a memory corruption condition.
An attacker could leverage this vulnerability to execute code in the context of the current process.
(ZDI-CAN-13342)

Source: CVE-2021-34306