Micro.Focus.Rumba.UI.Multiple.ActiveX.Memory.Corruption
Description
This indicates an attack attempt to exploit a Memory Corruption vulnerability in Micro Focus Rumba software package.
The vulnerability, which is located in multiple ActiveX controls, can be exploited through mis-use of a function. It may allow remote attackers to execute arbitrary code in the context of the application using the affected ActiveX control. Failed exploit attempts will likely cause the program to crash, resulting in a denial of service condition.
Affected Products
Micro Focus Rumba Desktop 9.4
Micro Focus Rumba 9.4 Trace
Micro Focus Rumba 9.4 APPC Configuration
Micro Focus Rumba 9.4 AS400 Communications
Micro Focus Rumba 9.4 AS400 File Transfer
Micro Focus Rumba 9.4 Communication Monitor
Micro Focus Rumba 9.4 Engine
Micro Focus Rumba 9.4 Screen Designer
Micro Focus Rumba 9.4 Submit Remote Command
Micro Focus Rumba FTP Client 4.5
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to the latest version available from the website.
https://www.microfocus.com
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-01-17 | 14.526 | Sig Added |