Google.Earth.KMLKMZ.Files.Buffer.Overflow

description-logoDescription

Google Earth has a heap-based buffer overflow vulnerability. A remote attacker could cause the Google Earth application to crash or execute arbitrary code on the system with the privileges of the application, by sending a specially-crafted kml or kmz file to the victim.

affected-products-logoAffected Products

Google Google Earth (beta) 4.0.2091(beta).

Impact logoImpact

Gain Access

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.
http://earth.google.com/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2018-09-27 13.459