Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:STC:DL:HEX-WORKSHP-CMAP-CE |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
BreakPoint Software Hex Workshop ".CMAP" File Arbitrary Code Execution |
Release Date |
2012/12/26 |
Update Number |
2215 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: BreakPoint Software Hex Workshop ".CMAP" File Arbitrary Code Execution
This signature detects attempts to exploit a known vulnerability in BreakPoint Software Hex Workshop. A successful attack could allow the attacker to execute arbitrary code on the targeted system. Failed exploit attempts could result in a denial of service condition.
Extended Description
Hex Workshop is prone to a heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions. Hex Workshop 5.1.4 is vulnerable; other versions may also be affected.
Affected Products
- Breakpoint_software hex_workshop 5.1.4
References
- BugTraq: 33023
- BugTraq: 33584
- CVE: CVE-2008-5756