Lucene search

[email protected]CVE-2013-3259

HistoryMar 03, 2014 - 4:55 p.m.

CVE-2013-3259

2014-03-0316:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve

2013

3259

stack-based buffer overflow

inmatrix zoom player

arbitrary code execution

bmp file

8.9 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.054 Low

EPSS

Percentile

93.1%

JSON

Stack-based buffer overflow in INMATRIX Zoom Player before 8.7 beta 11 allows remote attackers to execute arbitrary code via a large biClrUsed value in a BMP file.

CPENameOperatorVersion
inmatrix:zoom_playerinmatrix zoom playereq8.1.1
inmatrix:zoom_playerinmatrix zoom playereq8.5
inmatrix:zoom_playerinmatrix zoom playereq8.1.6
inmatrix:zoom_playerinmatrix zoom playereq8.10
inmatrix:zoom_playerinmatrix zoom playerle8.6.1
inmatrix:zoom_playerinmatrix zoom playereq8.00
inmatrix:zoom_playerinmatrix zoom playereq8.6
inmatrix:zoom_playerinmatrix zoom playereq8.1.5

CPE	Name	Operator	Version
inmatrix:zoom_player	inmatrix zoom player	eq	8.1.1
inmatrix:zoom_player	inmatrix zoom player	eq	8.5
inmatrix:zoom_player	inmatrix zoom player	eq	8.1.6
inmatrix:zoom_player	inmatrix zoom player	eq	8.10
inmatrix:zoom_player	inmatrix zoom player	le	8.6.1
inmatrix:zoom_player	inmatrix zoom player	eq	8.00
inmatrix:zoom_player	inmatrix zoom player	eq	8.6
inmatrix:zoom_player	inmatrix zoom player	eq	8.1.5

References

osvdb.org/94037

secunia.com/advisories/52698

www.securityfocus.com/bid/60418

exchange.xforce.ibmcloud.com/vulnerabilities/84835

8.9 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.054 Low

EPSS

Percentile

93.1%

JSON

Related for CVE-2013-3259

cvelist1 prion1