Vulnerability Details CVE-2012-6553
Heap-based buffer overflow in Resource Hacker 3.6.0.92 allows remote attackers to execute arbitrary code via a Portable Executable (PE) file with a resource section containing a string that has many tab or line feed characters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.078
EPSS Ranking 91.5%
CVSS Severity
CVSS v2 Score 9.3
References
- http://secunia.com/advisories/49217
- http://waleedassar.blogspot.com/2012/05/resource-hacker-heap-overflow.html
- http://www.securityfocus.com/bid/53608
- https://exchange.xforce.ibmcloud.com/vulnerabilities/75738
- http://secunia.com/advisories/49217
- http://waleedassar.blogspot.com/2012/05/resource-hacker-heap-overflow.html
- http://www.securityfocus.com/bid/53608
- https://exchange.xforce.ibmcloud.com/vulnerabilities/75738
Products affected by CVE-2012-6553
-
cpe:2.3:a:angusj:resource_hacker:3.6.0.92