CVE-2022-41188 The victim's computer can crash when opening a manipulated Wavefront Object file sent from an untrusted source.

During the installation of the SAP 3D Visual Enterprise Viewer - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application. Due to lack of proper memory management, when a victim opens manipulated Wavefront Object (.obj, ObjTranslator.exe) file received from untrusted sources in SAP NetWeaver 7.0, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application. Due to lack of proper memory management, when a victim opens manipulated Wavefront Object (.obj, ObjTranslator.exe) file received from untrusted sources in SAP Cloud Platform, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application. Due to lack of proper memory management, when a victim opens manipulated Wavefront Object (.obj, ObjTranslator.exe) file received from untrusted sources in IBM WebSphere Application Server, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application. Due to lack of proper memory management, when a victim opens manipulated Wavefront Object (.obj, ObjTranslator.exe) file received from untrusted sources in Microsoft SQL Server, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application

Summary

The crash can be triggered by an untrusted Wavefront Object (.obj, ObjTranslator.exe) file that was received from sources such as an email, a web page or a shared document where the victim had not knowingly opened it.
How to Protect Against This Attack
Users should ensure that any files which they want to open are scanned for viruses and malware before opening them.

Microsoft Windows Specific CVE-2022-41188

During the installation of the SAP 3D Visual Enterprise Viewer - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application. Due to lack of proper memory management, when a victim opens manipulated Wavefront Object (.obj, ObjTranslator.exe) file received from untrusted sources in Microsoft SQL Server, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application.
Due to lack of proper memory management, when a victim opens manipulated Wavefront Object (.obj, ObjTranslator.exe) file received from untrusted sources in Microsoft SQL Server, it is possible for an attacker to cause denial-of-service (DoS) or possibly execute arbitrary code by sending specially crafted packets that exceed permitted length.

Timeline

Published on: 10/11/2022 21:15:00 UTC
Last modified on: 10/12/2022 20:20:00 UTC

References

• https://launchpad.support.sap.com/#/notes/3245928
• https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-41188