APP: SAP 3D Visual Enterprise Viewer Flic Animation Buffer Overflow

A buffer overflow vulnerability exists in SAP 3D Visual Enterprise Viewer. The vulnerability is caused by improper boundary check when copying image data. By enticing a user to open maliciously crafted Flic animation file with the affected application, an attacker can exploit this vulnerability to execute arbitrary code with the privileges with currently logged on user.

Short Name
APP:SAP:3DVIS-FLIC-BO
Severity
Major
Recommended
True
Recommended Action
Drop
Category
APP
Keywords
3D Animation Buffer Enterprise Flic Overflow SAP Viewer Visual
Release Date
01/04/2016
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3375
False Positive
Unknown

Found a potential security threat?