Vulnerabilities > White Dune

DATE CVE VULNERABILITY TITLE RISK
2009-09-14 CVE-2008-7228 USE of Externally-Controlled Format String vulnerability in White Dune White Dune
Multiple format string vulnerabilities in White_Dune before 0.29beta851 have unspecified impact and attack vectors, a different vulnerability than CVE-2008-0101.
network
low complexity
white-dune CWE-134
critical
10.0
2008-01-08 CVE-2008-0101 Improper Input Validation vulnerability in White Dune White Dune
Format string vulnerability in the swDebugf function in DuneApp.cpp in White_Dune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a .WRL file.
network
low complexity
white-dune CWE-20
7.5
2008-01-08 CVE-2008-0100 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in White Dune White Dune
Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_Dune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via a long string in a .WRL file.
network
low complexity
white-dune CWE-119
7.5