cbcvebase.
CVE-2012-4552
published 2012-11-18

CVE-2012-4552: Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model…

PriorityP342medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
9.97%
95.0th percentile
Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file.

Affected

6 ranges
VendorProductVersion rangeFixed in
debianplib< plib 1.8.5-6 (bookworm)plib 1.8.5-6 (bookworm)
plib_projectplib>= 0 < 1.8.5-61.8.5-6
plib_projectplib>= 0 < 1.8.5-61.8.5-6
plib_projectplib>= 0 < 1.8.5-61.8.5-6
plib_projectplib>= 0 < 1.8.5-61.8.5-6
steve_j_bakerplib

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_debian6.8LOW
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.