High

CVE-2005-4470 - Unspecified vulnerability in Blender Blenloader

Publication: 2005-12-22
Summary

Heap-based buffer overflow in the get_bhead function in readfile.c in Blender BlenLoader 2.0 through 2.40pre allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a .blend file with a negative bhead.len value, which causes less memory to be allocated than expected, possibly due to an integer overflow.

Risk level (CVSS 7.5)

High

7.5

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • Blender Blenloader 2.0
  • Blender Blenloader 2.40_pre
  • Blender Blenloader 2.25
  • Blender Blenloader 2.26
  • Blender Blenloader 2.27
  • Blender Blenloader 2.28
  • Blender Blenloader 2.28a
  • Blender Blenloader 2.28c
  • Blender Blenloader 2.30
  • Blender Blenloader 2.31a
  • Blender Blenloader 2.04
  • Blender Blenloader 2.33
  • Blender Blenloader 2.33a
  • Blender Blenloader 2.34
  • Blender Blenloader 2.35
  • Blender Blenloader 2.37
  • Blender Blenloader 2.37a
  • Blender Blenloader 2.39
  • Blender Blenloader 2.40_alpha
  • Blender Blenloader 2.32