exploitDog

GHSA-qcj4-wjgr-2rrf

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Stack-based buffer overflow in the PlayMacro function in ObjectXMacro.ObjectXMacro in WdMacCtl.ocx in Micro Focus Rumba 9.x before 9.3 HF 11997 and 9.4.x before 9.4 HF 12815 allows remote attackers to execute arbitrary code via a long MacroName argument. NOTE: some references mention CVE-2016-5226 but that is not a correct ID for any Rumba vulnerability.

Stack-based buffer overflow in the PlayMacro function in ObjectXMacro.ObjectXMacro in WdMacCtl.ocx in Micro Focus Rumba 9.x before 9.3 HF 11997 and 9.4.x before 9.4 HF 12815 allows remote attackers to execute arbitrary code via a long MacroName argument. NOTE: some references mention CVE-2016-5226 but that is not a correct ID for any Rumba vulnerability.

Ссылки

EPSS

Процентиль: 97%

0.33708

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2016-5228

CVSS3: 9.8

nvd

больше 9 лет назад

Stack-based buffer overflow in the PlayMacro function in ObjectXMacro.ObjectXMacro in WdMacCtl.ocx in Micro Focus Rumba 9.x before 9.3 HF 11997 and 9.4.x before 9.4 HF 12815 allows remote attackers to execute arbitrary code via a long MacroName argument. NOTE: some references mention CVE-2016-5226 but that is not a correct ID for any Rumba vulnerability.

BDU:2016-02083

fstec

больше 9 лет назад

Уязвимость эмулятора терминала RUMBA, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 97%

0.33708

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-119