Lucene search

[email protected]CVE-2011-5172

HistorySep 15, 2012 - 5:55 p.m.

CVE-2011-5172

2012-09-1517:55:05

CWE-119

[email protected]

web.nvd.nist.gov

cve-2011-5172

storyboard quick

buffer overflow

remote code execution

xml file

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

High

0.167 Low

EPSS

Percentile

96.1%

JSON

Stack-based buffer overflow in StoryBoard Quick 6 Build 3786, and possibly StoryBoard Artist and StoryBoard Studio, allows remote attackers to execute arbitrary code via a long string in the string element field in a frame xml file.

Affected configurations

NVD

Node

powerproductionstoryboard_quickMatch6.0

CPENameOperatorVersion
powerproduction:storyboard_quickpowerproduction storyboard quickeq6.0

CPE	Name	Operator	Version
powerproduction:storyboard_quick	powerproduction storyboard quick	eq	6.0

References

secunia.com/advisories/47045

www.exploit-db.com/exploits/18186

www.security-assessment.com/files/documents/advisory/Storyboard_Quick6-Stack_Buffer_Overflow.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/71574

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

High

0.167 Low

EPSS

Percentile

96.1%

JSON

Related for CVE-2011-5172

cvelist1 prion1 nvd1