Micro.Focus.Rumba.WallData.Macro.PlayMacro.Memory.Corruption

description-logoDescription

This indicates an attack attempt against a Buffer Overflow vulnerability in Micro Focus Rumba.
The vulnerability is caused by a lack of bounds checking on an argument passed to PlayMacro() function. An attacker can trick an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the application.

affected-products-logoAffected Products

Micro Focus Rumba 9.4.0 SP0 Patch0
Micro Focus Rumba 9.4.4058.0

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary code within the context of the application.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-06-10 14.629 Severity:medium:critical

References

ZSL-2016-5327