CVE-2019-9135

DaviewIndy 8.98.7 and earlier versions have a Heap-based overflow vulnerability, triggered when the user opens a malformed DIB format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
Configurations

Configuration 1 (hide)

cpe:2.3:a:datools:daviewindy:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-04-25 17:29

Updated : 2024-02-28 17:08


NVD link : CVE-2019-9135

Mitre link : CVE-2019-9135

CVE.ORG link : CVE-2019-9135


JSON object : View

Products Affected

datools

  • daviewindy
CWE
CWE-787

Out-of-bounds Write

CWE-122

Heap-based Buffer Overflow