Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple stack-based buffer overflows in NCSAddOn.dll in the ERDAS APOLLO ECWP plugin before 13.00.0001 for Internet Explorer, Firefox, and Chrome allow remote attackers to execute arbitrary code via a long property value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ERDAS APOLLO ECWP Browser插件‘NCSAddOn.dll’栈缓冲区溢出漏洞
Vulnerability Description
ERDAS APOLLO ECWP Browser是美国Intergraph公司的一款浏览器插件。该插件提供Windows平台上的IE、Firefox、Chrome的ECWP支持。 ERDAS APOLLO ECWP Browser插件中存在基于栈的缓冲区溢出漏洞,该漏洞源于软件未正确对用户提供的输入进行边界值检查,导致程序复制数据的大小超出了分配的内存缓冲区空间。攻击者可利用该漏洞在受影响程序上下文中执行任意代码。也可导致拒绝服务。ERDAS APOLLO ECWP Browser Plugin 11.
CVSS Information
N/A
Vulnerability Type
N/A