CVE-2012-0916

RenRen Talk 2.9 - Remote Code Execution via Crafted Image in Chat Message

Title source: llm
STIX 2.1

Description

Heap-based buffer overflow in RenRen Talk 2.9 allows remote attackers to execute arbitrary code via a crafted image in a chat message, as demonstrated using a PNG file.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/51585
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/47314

Scores

EPSS 0.0346
EPSS Percentile 87.6%

Details

CWE
CWE-119
Status published
Products (1)
renren/renren_talk 2.9
Published Jan 24, 2012
Tracked Since Feb 18, 2026