3 matches found
CVE-2016-5228
CVE-2016-5228: Micro Focus Rumba 9.x before 9.3 HF11997 and 9.4.x before 9.4 HF12815 is vulnerable to a stack-based buffer overflow in the PlayMacro function (WdMacCtl.ocx ObjectXMacro). An attacker can trigger via a long MacroName argument to achieve remote code execution. A PoC exploit exists (...
CVE-2016-1606
The CVE-2016-1606 entry concerns Micro Focus Rumba/Rumba+ 9.4.x prior to 9.4 HF 13960, where multiple stack-based buffer overflows in COM objects allow remote code execution. Affected components include iconfig.dll (NetworkName, CPName), ProfEdit.dll (PrinterName, LUName), FtxBIFF.dll (WriteRecor...
CVE-2016-9176
CVE-2016-9176 describes a stack buffer overflow in the Micro Focus Rumba 9.4 and earlier, affecting the send.exe and receive.exe components. The root cause is a stack overflow that could allow code execution when an attacker locally exploits the binary or can inject arguments to these executables...