CVE-2016-5228

high-risk
Published 2016-07-03

Stack-based buffer overflow in the PlayMacro function in ObjectXMacro.ObjectXMacro in WdMacCtl.ocx in Micro Focus Rumba 9.x before 9.3 HF 11997 and 9.4.x before 9.4 HF 12815 allows remote attackers to execute arbitrary code via a long MacroName argument. NOTE: some references mention CVE-2016-5226 but that is not a correct ID for any Rumba vulnerability.

Do I need to act?

!
51.2% chance of exploitation in next 30 days
EPSS score — higher than 49% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
40649
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Microfocus

References (8)

http://community.microfocus.com/microfocus/mainframe_solutions/rumba/w/knowledge...
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2016-5327.php
https://cxsecurity.com/issue/WLB-2016050136
https://www.exploit-db.com/exploits/40649/
http://community.microfocus.com/microfocus/mainframe_solutions/rumba/w/knowledge...
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2016-5327.php
https://cxsecurity.com/issue/WLB-2016050136
https://www.exploit-db.com/exploits/40649/
62
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 25/34 · High
Exposure 5/34 · Minimal