CVE-2013-3483

critical

Published 2014-01-19 · Modified 2026-04-29

CVSS v3

—

CVSS v2

9.3

VIR risk

9.3

Description

Stack-based buffer overflow in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ERS file.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: PSIRT-CNA@flexerasoftware.com — http://secunia.com/advisories/53620

Application impact

Vendor	Product	Versions
hexagon	erdas_er_viewer	`{"endIncluding":"13.0.1.1298"}`
hexagon	erdas_er_viewer	`11.04`
hexagon	erdas_er_viewer	`13.00.0001`

References

http://attrition.org/pipermail/vim/2013-May/002682.html
http://secunia.com/advisories/53620
http://attrition.org/pipermail/vim/2013-May/002682.html
http://secunia.com/advisories/53620

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.