Vulnerability CVE-2011-5172


Published: 2012-09-15

Description:
Stack-based buffer overflow in StoryBoard Quick 6 Build 3786, and possibly StoryBoard Artist and StoryBoard Studio, allows remote attackers to execute arbitrary code via a long string in the string element field in a frame xml file.

See advisories in our WLB2 database:
Topic
Author
Date
High
NameLStoryBoard Quick 6 Stack Buffer Overflow
Nick Freeman
23.12.2011

Type:

CWE-119

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Powerproduction -> Storyboard quick 

 References:
http://xforce.iss.net/xforce/xfdb/71574
http://www.security-assessment.com/files/documents/advisory/Storyboard_Quick6-Stack_Buffer_Overflow.pdf
http://www.exploit-db.com/exploits/18186
http://secunia.com/advisories/47045

Copyright 2024, cxsecurity.com

 

Back to Top