VYPR
Unrated severityNVD Advisory· Published Aug 9, 2013· Updated Jun 16, 2026

CVE-2013-3480

CVE-2013-3480

Description

Integer overflow in Sagelight 4.4 and earlier allows remote attackers to execute arbitrary code via crafted width and height dimensions in a BMP file, which triggers a heap-based buffer overflow.

Affected products

2
  • cpe:2.3:a:sagelighteditor:sagelight:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sagelighteditor:sagelight:*:*:*:*:*:*:*:*range: <=4.4
    • (no CPE)range: <=4.4

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.