CVE Vulnerabilities

CVE-2012-2090

Use of Externally-Controlled Format String

Published: Jun 17, 2012 | Modified: Apr 11, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
NEGLIGIBLE

Multiple format string vulnerabilities in FlightGear 2.6 and earlier and SimGear 2.6 and earlier allow user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in certain data chunk values in an aircraft xml model to (1) fgfs/flightgear/src/Cockpit/panel.cxx or (2) fgfs/flightgear/src/Network/generic.cxx, or (3) a scene graph model to simgear/simgear/scene/model/SGText.cxx.

Weakness

The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

Affected Software

Name Vendor Start Version End Version
Flightgear Flightgear * 2.6.0 (including)
Flightgear Flightgear 1.9.1 (including) 1.9.1 (including)
Flightgear Flightgear 2.0.0 (including) 2.0.0 (including)
Simgear Simgear * 2.6.0 (including)
Simgear Simgear 1.9.1 (including) 1.9.1 (including)
Simgear Simgear 2.0.0 (including) 2.0.0 (including)
Flightgear Ubuntu devel *
Flightgear Ubuntu hardy *
Flightgear Ubuntu lucid *
Flightgear Ubuntu natty *
Flightgear Ubuntu oneiric *
Simgear Ubuntu devel *
Simgear Ubuntu hardy *
Simgear Ubuntu lucid *
Simgear Ubuntu natty *
Simgear Ubuntu oneiric *

Potential Mitigations

References