CVE-2014-2073

Vulnerability

A stack-based buffer overflow exists in Dassault Systemes CATIA V5-6R2013, specifically within the "CATV5_Backbone_Bus" component. The vulnerability is triggered when the application processes a specially crafted network packet. No authentication is required to reach the vulnerable code path, making it remotely exploitable over the network. The affected version is CATIA V5-6R2013; earlier or later versions may not be vulnerable, though this is not explicitly stated in the references [1].

Exploitation

An attacker needs only network access to a machine running the vulnerable CATIA installation. No prior authentication or user interaction is required. The exploit involves sending a crafted packet to the service that handles the CATV5_Backbone_Bus protocol. The packet contains data that overflows a fixed-size stack buffer, overwriting critical control flow structures such as the saved return address. Proof-of-concept code is publicly available, as noted in reference [1].

Impact

Successful exploitation allows an attacker to execute arbitrary code with the privileges of the CATIA process. This typically leads to full system compromise, including the ability to read, modify, or delete data, install malware, or pivot to other systems on the network. The vulnerability is classified as a remote code execution (RCE) flaw affecting the confidentiality, integrity, and availability of the compromised system [1].

Mitigation

As of the publication date of reference [1] (April 2014), Dassault Systemes had not released a security patch or advisory for this vulnerability. The product may remain vulnerable unless an update was provided later. No workaround is documented in the available references. The CVE is not listed in the Known Exploited Vulnerabilities (KEV) catalog. Users should verify with the vendor for any post-2014 fixes or consider network-level controls to restrict access to the vulnerable service [1].