Vulnerability Details CVE-2020-11528
bit2spr 1992-06-07 has a stack-based buffer overflow (129-byte write) in conv_bitmap in bit2spr.c via a long line in a bitmap file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://github.com/14isnot40/vul_discovery/blob/06d04dbbc6f792a82321c00376d4dbf3add00f4f/poc/bit2spr%20vulnerability%20discovery.md.pdf
- https://github.com/14isnot40/vul_discovery/blob/14isnot40-patch-1/README.md
- https://github.com/14isnot40/vul_discovery/blob/06d04dbbc6f792a82321c00376d4dbf3add00f4f/poc/bit2spr%20vulnerability%20discovery.md.pdf
- https://github.com/14isnot40/vul_discovery/blob/14isnot40-patch-1/README.md
Products affected by CVE-2020-11528
-
cpe:2.3:a:bit2spr_project:bit2spr:1992-06-07