Adersoft VbsEdit '.vbs' File Denial Of Service Vulnerability Network Vulnerability

Summary

This host is installed with VbsEdit and is prone to Denial Of Service vulnerability.

Impact

Successful exploitation will allow remote attackers to crash the affected application, resulting in a denial-of-service condition. Impact Level: Application.

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.

Insight

The flaw exists due to an error in handling '.vbs' file which allows the user to crash the affected application.

Affected

Adersoft VbsEdit 4.6.1 and prior

References

http://inj3ct0r.com/exploits/13733
http://www.expbase.com/Dos/12737.html
http://www.securityfocus.com/bid/42525/discuss

Updated on 2017-03-28

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

CA kmxfw.sys Code Execution and DoS Vulnerabilities
BlackIce DoS (ping flood)
CUPS IPP Use-After-Free Denial of Service Vulnerability
Easy RM to MP3 Converter Buffer Overflow Vulnerability
Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Linux)

Take action and discover your vulnerabilities