Published: 10/12/2013 Updated: 29/08/2017

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in IBM Forms Viewer 4.x prior to 4.0.0.3 and 8.x prior to 8.0.1.1 allows remote malicious users to execute arbitrary code via an XFDL form with a long fontname value.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm forms viewer 4.0.0.2
ibm forms viewer 4.0.0.1
ibm forms viewer 4.0.0
ibm forms viewer 8.0.1
ibm forms viewer 8.0.0

## # This module requires Metasploit: http//metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## require 'msf/core' require 'rexml/document' class Metasploit3 < Msf::Exploit::Remote Rank = NormalRanking include REXML include Msf::Exploit::FILEFORMAT def initialize(info = {}) super(update_inf ...

CWE-119 http://www-01.ibm.com/support/docview.wss?uid=swg1LO78184 http://www-01.ibm.com/support/docview.wss?uid=swg21657500 http://www.exploit-db.com/exploits/30789 http://packetstormsecurity.com/files/124658 http://www.zerodayinitiative.com/advisories/ZDI-13-274/https://exchange.xforce.ibmcloud.com/vulnerabilities/87911 https://nvd.nist.gov https://www.exploit-db.com/exploits/30789/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-5447

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect