Published: 15/09/2012 Updated: 29/08/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Heap-based buffer overflow in the SetDevNames method of the Tidestone Formula One ActiveX control (TTF16.ocx) 6.3.5 Build 1 in Oracle Hyperion Strategic Finance 12.x and possibly earlier allows remote malicious users to execute arbitrary code via a long string to the DriverName parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle hyperion strategic finance 11.1.2.1.0
tidestone formula one activex control 6.3.5.1
oracle hyperion strategic finance

<!-- Oracle Hyperion Strategic Finance Client 12x Tidestone Formula One WorkBook OLE Control TTF16 (635 Build 1) SetDevNames() Remote Heap Overflow poc 99% stable,IE-no-dep I think this control can be carried by other products, however 61 seems not vulnerable A copy of heapLib can be found here: retrogodaltervistaorg/heapLib_js ...

CWE-119 http://www.exploit-db.com/exploits/18092 http://www.osvdb.org/76913 http://secunia.com/advisories/46764 http://retrogod.altervista.org/9sg_ttf16.html http://www.saintcorporation.com/cgi-bin/exploit_info/oracle_hyperion_financial_mgmt_activex_heap http://www.securityfocus.com/bid/50565 https://exchange.xforce.ibmcloud.com/vulnerabilities/71163 https://nvd.nist.gov https://www.exploit-db.com/exploits/18092/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-5167

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect