CVE-2018-1000524
MEDIUMminisphere < 5.2.9 - Denial of Service via Integer Overflow in layer_resize()
Title source: llmDescription
miniSphere version 5.2.9 and earlier contains a Integer Overflow vulnerability in layer_resize() function in map_engine.c that can result in remote denial of service. This attack appear to be exploitable via the victim must load a specially-crafted map which calls SetLayerSize in its entry script. This vulnerability appears to have been fixed in 5.0.3, 5.1.5, 5.2.10 and later.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_misc
https://github.com/fatcerberus/minisphere/pull/268
Exploit, Patch, Third Party Advisory x_refsource_misc
https://github.com/fatcerberus/minisphere/commit/252c1ca184cb38e1acb917aa0e451c5f08519996
Scores
CVSS v3
5.5
EPSS
0.0121
EPSS Percentile
64.6%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-190
Status
published
Products (1)
spheredev/minisphere
< 5.2.9
Published
Jun 26, 2018
Tracked Since
Feb 18, 2026