CVE-2012-2090Use of Externally-Controlled Format String in Flightgear

CWE-134Use of Externally-Controlled Format String7 documents5 sources
Severity
9.3CRITICALNVD
EPSS
4.5%
top 10.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
FlightgearSimgearDebian Flightgear+1 more
Timeline
PublishedJun 17
Latest updateMay 17

Description

Multiple format string vulnerabilities in FlightGear 2.6 and earlier and SimGear 2.6 and earlier allow user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in certain data chunk values in an aircraft xml model to (1) fgfs/flightgear/src/Cockpit/panel.cxx or (2) fgfs/flightgear/src/Network/generic.cxx, or (3) a scene graph model to simgear/simgear/scene/model/SGText.cxx.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages6 packages

debiandebian/simgear< flightgear 2.6.0-1.1 (bookworm)
debiandebian/flightgear< flightgear 2.6.0-1.1 (bookworm)
Debiansimgear/simgear< 2.10.0-2+3
Debianflightgear/flightgear< 2.6.0-1.1+3
NVDsimgear/simgear2.6.0+2

🔴Vulnerability Details

2
GHSA
GHSA-4426-49xv-wxg5: Multiple format string vulnerabilities in FlightGear 22022-05-17
OSV
CVE-2012-2090: Multiple format string vulnerabilities in FlightGear 22012-06-17

📋Vendor Advisories

1
Debian
CVE-2012-2090: flightgear - Multiple format string vulnerabilities in FlightGear 2.6 and earlier and SimGear...2012

💬Community

3
Bugzilla
CVE-2012-2090 SimGear, FlightGear: Multiple format string flaws2012-04-11
Bugzilla
CVE-2012-2090 SimGear, FlightGear: Multiple format string flaws [fedora-all]2012-04-11
Bugzilla
CVE-2012-2090 CVE-2012-2091 FlightGear various flaws [fedora-all]2012-04-11