Vulnerability CVE-2012-6558


Published: 2013-05-23

Description:
Heap-based buffer overflow in HeavenTools PE Explorer 1.99 R6 allows remote attackers to execute arbitrary code via the size value for a string in the resource section of a Portable Executable (PE) file.

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Heaventools -> Pe explorer 

 References:
http://xforce.iss.net/xforce/xfdb/75742
http://www.securityfocus.com/bid/53618
http://waleedassar.blogspot.com/2012/05/pe-explorer-heap-overflow-vulnerability.html
http://secunia.com/advisories/49239

Copyright 2024, cxsecurity.com

 

Back to Top