Vulnerabilities > CVE-2012-0915 - Numeric Errors vulnerability in Renren Talk 2.9
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Integer signedness error in RenRen Talk 2.9 allows remote attackers to execute arbitrary code via crafted dimensions of a skin file, leading to a heap-based buffer overflow, as demonstrated using a BMP image.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |