CVE-2014-2262 Information

Description

Buffer overflow in the client application in Base SAS 9.2 TS2M3 SAS 9.3 TS1M1 and TS1M2 and SAS 9.4 TS1M0 allows user-assisted remote attackers to execute arbitrary code via a crafted SAS program.

Reference

http://secunia.com/advisories/57029 http://support.sas.com/kb/51/701.html http://www.securityfocus.com/archive/1/531283/100/0/threaded http://www.securityfocus.com/bid/65853 https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20140227-0_SAS_Buffer_overflow_v10.txt