CVE-2012-2915
Lattice Semiconductor PAC-Designer <6.2.1344 - Buffer Overflow
Title source: llmDescription
Stack-based buffer overflow in Lattice Semiconductor PAC-Designer 6.2.1344 allows remote attackers to execute arbitrary code via a long string in a Value tag in a SymbolicSchematicData definition tag in PAC Design (.pac) file.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/19175
exploitdb
WORKING POC
VERIFIED
by b33f · pythonlocalwindows
https://www.exploit-db.com/exploits/19006
metasploit
WORKING POC
NORMAL
by Unknown, juan vazquez, sinn3r · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/lattice_pac_bof.rb
Scores
EPSS
0.6607
EPSS Percentile
98.5%
Details
CWE
CWE-119
Status
published
Products (1)
lattice_semiconductor/pac-designer
6.2.1344
Published
May 21, 2012
Tracked Since
Feb 18, 2026