Digilent DASYLab Memory Corruption Vulnerability Allowing Information Disclosure or Arbitrary Code Execution
Vulnerability
A memory corruption vulnerability has been identified in Digilent DASYLab, all versions, due to an out-of-bounds write when loading a corrupted DSB file. This vulnerability may lead to information disclosure or arbitrary code execution. Successful exploitation requires an attacker to persuade a user to open a specially crafted .DSB file.
Impact
Exploitation of this vulnerability could result in memory corruption, allowing for information disclosure or arbitrary code execution.
Remediation
There are no fixes available for this vulnerability. Users are advised to practice good cyber awareness and avoid opening files from untrusted sources.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.