Open Asset Import Library Assimp Heap-Based Buffer Overflow Vulnerability in AC3D File Handler

A critical heap-based buffer overflow vulnerability has been identified in Open Asset Import Library (Assimp) version 5.4.3 and later. The issue arises in the AC3D File Handler component, specifically within the 'Assimp::AC3DImporter::ConvertObjectSection' function. This vulnerability can be exploited remotely, potentially leading to arbitrary code execution, if a victim is tricked into processing a maliciously crafted AC3D file with Assimp.

Impact

Exploitation of this vulnerability causes a heap-based buffer overflow, which can lead to memory corruption and potentially allow for arbitrary code execution.

Reproduction

The vulnerability can be reproduced by building Assimp with address sanitizer enabled, using a fuzzer to generate a malformed AC3D file that triggers the buffer overflow. The fuzzer can be created by compiling a C++ file that uses the Assimp library to read AC3D files, and then running this fuzzer with the crafted file that exploits the vulnerability.