CVE-2021-29096

ArcGIS general raster security update: use-after-free

CVSS 7.8 HIGHEPSS 1.5%CWE-416

In short

A memory flaw in ArcGIS applications allows an attacker to run malicious code on your computer by sending a specially crafted file. Once you open the file, the attacker gains the same access and permissions as you.

Technical detail

Use-after-free vulnerability in raster file parsing across ArcReader, ArcGIS Desktop, ArcGIS Engine ≤10.8.1, and ArcGIS Pro ≤2.7. Unauthenticated remote code execution is achieved through a maliciously crafted file that triggers access to freed memory, enabling arbitrary code execution within the current user's context.

Summary generated and translated by AI from the official description.

A use-after-free vulnerability when parsing a specially crafted file in Esri ArcReader, ArcGIS Desktop, ArcGIS Engine 10.8.1 (and earlier) and ArcGIS Pro 2.7 (and earlier) allows an unauthenticated attacker to achieve arbitrary code execution in the context of the current user.

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Esri · ArcGIS Desktop Esri · ArcGIS Desktop Background Geoprocessing Esri · ArcGIS Engine Esri · ArcGIS Engine Background Geoprocessing Esri · ArcReader

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.esri.com/arcgis-blog/products/arcgis/administration/security-advisory-general-raster/https://www.zerodayinitiative.com/advisories/ZDI-21-370/