Lattice Semiconductor » Lattice Diamond Programmer : Security Vulnerabilities, CVEs,
Buffer overflow in programmer.exe in Lattice Diamond Programmer 1.4.2 allows user-assisted remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long string in a version attribute of an ispXCF element in an .xcf file.
Max CVSS
6.8
EPSS Score
47.95%
Published
2012-07-12
Updated
2012-08-18
1 vulnerabilities found