DesignWorks Professional '.cct' File BOF Vulnerability Network Vulnerability

Summary

The host is installed with DesignWorks Professional and is prone to stack overflow vulnerability.

Impact

Successful exploitation will let the remote attackers execute arbitrary code by tricking a user into opening a specially crafted file and can cause stack overflow in the context of the affected application. Impact Level: Application

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one For updates refer to http://www.capilano.com/html/dwwp.html

Insight

Boundary error exists when processing '.cct' files.

Affected

DesignWorks Professional version 5.0.7 and prior.

References

http://secunia.com/advisories/33043
http://www.vupen.com/english/advisories/2008/3369

Updated on 2017-03-28

Severity

Classification

CVE CVE-2008-6363
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat and Reader SING 'uniqueName' Buffer Overflow Vulnerability (Linux)
Adobe Shockwave Player ActiveX Control BOF Vulnerability
Adobe Reader 'File Extension' Buffer Overflow Vulnerability (Windows)
DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability
Adobe Reader Multimeda Doc.media.newPlayer Code Execution Vulnerability (Linux)

Take action and discover your vulnerabilities