Description
Multiple stack-based buffer overflows in NCSAddOn.dll in the ERDAS APOLLO ECWP plugin before 13.00.0001 for Internet Explorer, Firefox, and Chrome allow remote attackers to execute arbitrary code via a long property value.
References (1)
Core 1
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/51647
Scores
EPSS
0.0440
EPSS Percentile
90.2%
Details
CWE
CWE-119
Status
published
Products (1)
hexagon/erdas_apollo_ecwp
13.00.0000 (3 CPE variants)
Published
Apr 25, 2013
Tracked Since
Feb 18, 2026